Taiwanese hardware manufacturer Micro-Star International (MSI) has confirmed it suffered a cyberattack after a new ransomware group called Money Message added the company to the list of their victims.
MSI said in a statement that the attack affected some of information systems and urged users to obtain firmware/BIOS updates only from its official website, and not to use files from sources other than the official website.
The company did not provide further information about how and when the attack occurred, if any of the impacted systems were encrypted, or if the threat actors exfiltrated business and customer information during the attack.
Last week, reports emerged that the Money Message ransomware gang listed the hardware giant on their data leak website, claiming to have stolen roughly 1.5TB worth of documents from MSI's network. The gang threatened to leak the allegedly stolen data if the company refuses to pay a $4 million ransom.
As proof of the alleged theft the group posted screenshots of what was described as MSI’s Enterprise Resource Planning (ERP) databases and files containing software source code, private keys, and BIOS firmware.