AdminMSI, a Taiwanese computer hardware manufacturer, suffered a ransomware attack (opens in a new tab) attack last week, but downplays its impact.
PCMag discovered a report the company filed with the Taiwan Securities Exchange (TWSE) in which MSI detailed the incident, including a discussion of what data could potentially be intercepted in the attack and what impact it could have on the company.
“After detecting that some IT systems were being hacked, MSI IT initiated an information security defense mechanism and recovery procedures. The company has also been reported [sic] anomalies to the relevant government authorities,” MSI said.
No significant impact
Also, the details of the attack are sparse. We don’t know exactly when the incident happened (it could have been months ago), which systems and endpoints the company encrypted, or whether any sensitive data was compromised during the attack.
MSI said the cyberattack had no “significant” operational or financial impact, noting:
“Currently, there is no significant financial and operational impact on our business. The Company is also improving the information security controls on its network and infrastructure to ensure data security.”
However, it did warn its users to download BIOS and firmware updates from official sources, BleepingComputer reported.
“MSI urges users to download firmware/BIOS updates from the official website only and not to use files from sources other than the official website,” the company wrote.
Earlier this week, the Money Message ransomware gang claimed to have infiltrated some MSI systems and stolen files that will leak online next week if the company refuses to pay a $4 million ransom.
Although the company did not say who was behind the attack, a cybercriminal known as Money Message claimed to have hacked into MSI’s systems and stolen some files. He asked for $4 million not to release the files.
By: Beeping Computer (opens in a new tab)
