Taiwanese PC company MSI (short for Micro-Star International) has officially confirmed that it is a victim of a cyber attack on its systems.
The company said it “immediately” started incident response and recovery actions after detecting a “network anomaly.” It also said it had informed law enforcement agencies of the matter.
However, MSI did not disclose specifically when the attack occurred and whether it required the exfiltration of any proprietary information, including source code.
“At present, the affected systems are gradually returning to normal operations, without significant impact on the financial business,” the company said in a statement. short notice distributed on Friday.
In a regulatory submissions with the Taiwan Stock Exchange, he said it was setting up enhanced controls over its network and infrastructure to ensure data security.
MSI further urges users to get firmware/BIOS updates from its official website only, and not to download files from other sources.
The revelations come as a new ransomware gang known as Money Message adds the company to its list of victims. Threat actor is highlighted by Zscaler late last month.
“The group uses a double blackmail technique to target its victims, which involves exfiltrating the victim’s data before encrypting it,” Cyble noted in an analysis published this week. “The group uploads data on their leak site if the ransom has not been paid.”
The development occurred a month after Acer confirmed his own breach which resulted in the theft of 160 GB of confidential data. It was advertised on March 6, 2023, for sale on the now defunct BreachForums.