MSI Warns Customers After Cyberattack on its Systems

[TheLostSwede]

MSI has issued a warning to its customers after the company detected it has suffered from a cyberattack on its "information systems". Although it's not clear exactly what was attacked, the company has detected what it calls anomalies on its network and has since kicked in "relevant defense mechanisms" which among other things included reporting the incident to local law enforcement agencies and cybersecurity units.

MSI states that the company has been gradually restoring its systems back to normal operations and that the attack has had negligible impact on its business. However, MSI is warning its customers not to download MSI BIOS/UEFI/firmware updates or drivers from any other source than MSI's official website, or any of its software. Although MSI doesn't state if whoever performed the attack might have gotten hold of any of its software, this seems to suggest such things and it's clear that MSI is worried that there might be software appearing in the near future that will be compromised in one way or another.



View at TechPowerUp Main Site | Source

 

[Chaitanya]

And they dont have phone home feature for malware unlike Shitsus RoGarbage products so this is even more surprising.

 

[Bwaze]

When Gigabyte got attacked (twice) they claimed that no client data was obtained. Ransomware group exposed that lie and published partial data which showed they obtained usernames, passwords, even some credit card information, employee and job candidates data, and of course tons of data on products... Gigabyte never publicly acknowledged that, their only response was lying low, and of course they simply deleted their official forum (which was full of customer complaints anyway, so that was only benefitial).

 

[evernessince]

Did MSI warn customers? I'm both a customer and newsletter subscriber and I haven't received any notice of the attack. If all they did was make an announcement, that's not nearly enough. They need to find out the scope of damage and alert customers ASAP.

 

[80251]

Would MSI Afterburner installs be affected?

 

[P4-630]

MSI was hit by Ransomware

Money Message ransomware gang claims MSI breach, demands $4 million

Taiwanese PC parts maker MSI (Micro-Star International) has been listed on the extortion portal of a new ransomware gang known as "Money Message," which claims to have stolen source code from the company's network.

www.bleepingcomputer.com

 

[80251]

I believe a couple of years ago the CEO of MSI took a long dive from his apartment to the streets of Taipei, a "suicide".

 

[Minus Infinity]

When Gigabyte got attacked (twice) they claimed that no client data was obtained. Ransomware group exposed that lie and published partial data which showed they obtained usernames, passwords, even some credit card information, employee and job candidates data, and of course tons of data on products... Gigabyte never publicly acknowledged that, their only response was lying low, and of course they simply deleted their official forum (which was full of customer complaints anyway, so that was only benefitial).

Gigabyte are a joke. If there is chatter on the forums about product issue, they quickly close down the RMA service for a while so people can't initiate a return.