Taiwanese PC firm MSI (quick for Micro-Star Worldwide) formally confirmed it was the sufferer of a cyber assault on its methods.
The corporate stated it “promptly” initiated incident response and restoration measures after detecting “community anomalies.” It additionally stated it alerted legislation enforcement companies of the matter.
That stated, MSI didn’t disclose any specifics about when the assault befell and if it entailed the exfiltration of any proprietary info, together with supply code.
“At the moment, the affected methods have progressively resumed regular operations, with no important impression on monetary enterprise,” the corporate stated in a brief notice shared on Friday.
In a regulatory filing with the Taiwan Inventory Alternate, it stated that it is organising enhanced controls of its community and infrastructure to make sure the safety of information.
MSI is additional urging customers to acquire firmware/BIOS updates solely from its official web site, and chorus from downloading recordsdata from different sources.
The disclosure comes as a brand new ransomware gang often known as Cash Message added the corporate to its checklist of victims. The menace actor was spotlighted by Zscaler late final month.
“The group makes use of a double extortion method to focus on its victims, which includes exfiltrating the sufferer’s information earlier than encrypting it,” Cyble noted in an evaluation revealed this week. “The group uploads the info on their leak web site if the ransom is unpaid.”
The event comes a month after Acer confirmed a breach of its personal that resulted within the theft of 160 GB of confidential information. It was marketed on March 6, 2023, on the market on the now-defunct BreachForums.