Taiwanese computing hardware powerhouse MSI has taken a hit ransomware (opens in new tab) Attack last week but downplays its impact.
PCMag discovered a report the company had filed with the Taiwan Stock Exchange (TWSE) in which MSI detailed the incident, including a discussion of what data might have been stolen in the attack and what impact it could have on the company.
“After realizing that some information systems were being attacked by hackers, MSI’s IT department initiated information security defenses and recovery procedures. The company was also reported [sic] to escalate the anomaly to the appropriate government agencies,” MSI said.
No significant impact
Aside from that, details of the attack are scarce. We don’t know exactly when the incident occurred (it could have been months ago), what systems and endpoints the company had encrypted, or if sensitive data was stolen in the attack.
MSI said the cyberattack had no “significant” operational or financial impact, noting:
“Currently, no significant impact on our business from a financial and operational perspective. The company is also improving information security control measures of its network and infrastructure to ensure data security.”
However, it warned its users against getting BIOS and firmware updates from official sources, BleepingComputer reported.
“MSI urges users to obtain firmware/BIOS updates only from its official website and not to use files from sources other than the official website,” the company said.
Earlier this week, ransomware gang Money Message claimed to infiltrate some of MSI’s systems and stolen files, which will be leaked online next week if the company refuses to pay a $4 million ransom.
Although the company did not say who was behind the attack, a threat actor named Money Message claimed to have broken into MSI’s systems and stolen some files. It asked for $4 million not to release the files.
Above: Beeping computer (opens in new tab)
