Taiwanese PC firm MSI (brief for Micro-Star Worldwide) formally confirmed it was the sufferer of a cyber assault on its methods.
The corporate mentioned it “promptly” initiated incident response and restoration measures after detecting “community anomalies.” It additionally mentioned it alerted regulation enforcement companies of the matter.
That mentioned, MSI didn’t disclose any specifics about when the assault passed off and if it entailed the exfiltration of any proprietary data, together with supply code.
“Presently, the affected methods have regularly resumed regular operations, with no important affect on monetary enterprise,” the corporate mentioned in a brief notice shared on Friday.
In a regulatory filing with the Taiwan Inventory Trade, it mentioned that it is establishing enhanced controls of its community and infrastructure to make sure the safety of knowledge.
MSI is additional urging customers to acquire firmware/BIOS updates solely from its official web site, and chorus from downloading recordsdata from different sources.
The disclosure comes as a brand new ransomware gang often known as Cash Message added the corporate to its record of victims. The risk actor was spotlighted by Zscaler late final month.
“The group makes use of a double extortion method to focus on its victims, which includes exfiltrating the sufferer’s knowledge earlier than encrypting it,” Cyble noted in an evaluation printed this week. “The group uploads the information on their leak website if the ransom is unpaid.”
The event comes a month after Acer confirmed a breach of its personal that resulted within the theft of 160 GB of confidential knowledge. It was marketed on March 6, 2023, on the market on the now-defunct BreachForums.