Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
Security

MSI Confirms Breach as Ransomware Gang Claims Responsibility (pcmag.com) 11

MSI has confirmed it suffered a data breach after a ransomware gang claimed it stole files from the PC maker. The company published a Taiwanese stock exchange filing about experiencing a âoecyber attack,â although the company is thin on details. From a report: "After detecting some information systems being attacked by hackers, MSI's IT department has initiated information security defense mechanism and recovery procedures," the PC maker said. The company also reported the incident to authorities. MSI didn't immediately respond to a request for comment, making it unclear whether customer data is affected. But in the stock exchange filing, the PC maker says it anticipates the breach having "no significant impact" on its financials or operations. A new ransomware group called Money Message claims it breached the PC maker to steal the company's source code, including the framework for the BIOS used in MSI products.
This discussion has been archived. No new comments can be posted.

MSI Confirms Breach as Ransomware Gang Claims Responsibility

Comments Filter:
  • >Money Message claims it breached the PC maker to steal the company's source code, including the framework for the BIOS used in MSI products.

    BIOS Rootkits for specific MSI motherboards and laptops coming?

  • A new ransomware group called Money Message claims it breached the PC maker to steal the company's source code, including the framework for the BIOS used in MSI products.

    Great, leak that code immediately. We need it to figure out what kind of fuckery they got up to during initialization.

  • I just hope their core firmware/BIOS signing keys are in a hardware security module, and not just left lying around for someone to fetch. It amazes me how many companies that have extremely sensitive keys like something that signs and autoupdates firmware not stored in any real secure manner.

    • Comment removed (Score:4, Interesting)

      by account_deleted ( 4530225 ) on Friday April 07, 2023 @12:26PM (#63433198)
      Comment removed based on user account deletion
      • by tlhIngan ( 30335 )

        I'd much prefer the bios development kit be included with motherboard purchase , a physical jumper to enable/disable write access to firmware chip and a pinheader for direct flashing with an external programmer.

        It's not that simple - unless the chip provides a write protect jumper, which practically none do - none of those features work like that.

        You have to write to the chip - usually to issue it commands. In the old days, yes, you could block writes because it was a standard NOR flash chip that was readab

Genius is ten percent inspiration and fifty percent capital gains.

Working...