Friday , September 6 2024

InfoSecBulletin Cybersecurity for mankind

MSI Confirms Breach as Ransomware Gang Claims Responsibility

infosecbulletin Saturday , April 8 2023 Hot Topic, International

A new statement(Opens in a new window) from MSI says users should avoid downloading firmware and BIOS updates from third-party sources, and instead only obtain such software from the company’s official website.

The statement suggests MSI is worried hackers could circulate malicious versions of the company’s BIOS software when the ransomware gang, Money Message, claims it stole the PC maker’s source code.

Cisco released security updates for two critical security flaws

By infosecbulletin / Thursday , September 5 2024

CISCO released security updates for two critical security flaws impacting its smart Licensing Utility that could allow unauthenticated, remote attackers...

Cisco released security updates for two critical security flaws

OpenBAS: Cutting-edge breach and attack simulation platform

By infosecbulletin / Wednesday , September 4 2024

OpenBAS is a platform that helps organizations to plan, schedule, and conduct crisis exercises, adversary simulations, and breach simulations. OpenBAS...

OpenBAS: Cutting-edge breach and attack simulation platform

Critical Security Flaws Patched in Zyxel Networking Devices

By infosecbulletin / Wednesday , September 4 2024

Zyxel has released software updates to fix a serious security issue in certain access point (AP) and security router versions....

Critical Security Flaws Patched in Zyxel Networking Devices

CVE-2024-38811: CEV In VMware Fusion Unveiled

By infosecbulletin / Tuesday , September 3 2024

VMware released a security advisory for a major vulnerability in the VMware Fusion product. This vulnerability could be exploited by...

CVE-2024-38811: CEV In VMware Fusion Unveiled

CERT-IN Warns Vulnerabilities in Palo Alto Networks applications

By infosecbulletin / Tuesday , September 3 2024

Indian Computer Emergency Response Team (CERT-IN) issued advisories about multiple vulnerabilities in various Palo Alto Networks applications. Attackers could exploit...

CERT-IN Warns Vulnerabilities in Palo Alto Networks applications

How Malaysia’s Data Centre Industry Poised for Growth

By infosecbulletin / Tuesday , September 3 2024

Malaysia is quickly becoming a leading choice for investing in data centers. It aims to generate RM3.6 billion (US$781 million)...

How Malaysia’s Data Centre Industry Poised for Growth

RansomHub exfiltrated data over 210 victims: US alert

By infosecbulletin / Tuesday , September 3 2024

US authorities have issued a cybersecurity advisory about a ransomware group called RansomHub. The group is thought to have stolen data...

RansomHub exfiltrated data over 210 victims: US alert

Godzilla Fileless Backdoor Exploits Atlassian Confluence flaw

By infosecbulletin / Tuesday , September 3 2024

There is a new way to attack Atlassian Confluence using the vulnerability CVE-2023-22527. The Confluence Data Center and Server products...

Godzilla Fileless Backdoor Exploits Atlassian Confluence flaw

New Cicada ransomware targets VMware ESXi servers

By infosecbulletin / Tuesday , September 3 2024

The Cicada3301 ransomware is made in Rust and attacks Windows and Linux/ESXi hosts. Truesec researchers examined a version that targets...

New Cicada ransomware targets VMware ESXi servers

Monday hits two UK bank apps causes outages

By infosecbulletin / Tuesday , September 3 2024

Lloyds Bank and Virgin Money's internet banking services were down on Monday, causing trouble for users to access and view...

Monday hits two UK bank apps causes outages

Original story:

MSI has confirmed it suffered a data breach after a ransomware gang claimed it stole files from the PC maker. The company published a Taiwanese stock exchange filing(Opens in a new window) about experiencing a “cyber attack,” although the company is thin on details.

“After detecting some information systems being attacked by hackers, MSI’s IT department has initiated information security defense mechanism and recovery procedures,” the PC maker said. The company also reported the incident to authorities.

(Credit: MOPS)

MSI didn’t immediately respond to a request for comment, making it unclear whether customer data is affected. But in the stock exchange filing, the PC maker says it anticipates the breach having “no significant impact” on its financials or operations.

A new ransomware group called Money Message claims it breached the PC maker to steal the company’s source code, including the framework for the BIOS used in MSI products.

The leak site for the ransomware group Money Message.

Money Message posted screenshots of the stolen files on the group’s dark web site. The ransomware gang is demanding MSI pay $4 million or else it’ll leak the stolen data next week, according(Opens in a new window) to BleepingComputer, citing chats Money Message made with a victim representative.

Money Message seems to have only emerged last month. The group has targeted Windows and Linux computers and will try to encrypt shared network resources, according to cybersecurity firm Cyble. The company also uncovered evidence Money Message will first try to identify and steal the admin credentials for an IT network before spreading their ransomware attacks.

As for MSI, the PC maker says in the stock exchange filing that it’s working to bolster its cybersecurity for company systems.

Related Articles

Check Also

microsoft

Microsoft requires MFA for access to admin portals starting in October

Microsoft warned Entra global admins to enable multi-factor authentication (MFA) for their tenants by October …

Leave a Reply Cancel reply