MSI, a Taiwanese computer hardware company, has issued a statement urging users only to download firmware updates and BIOS from the official site following a recent cyber attack. Approximately 1.5 TB of data was allegedly stolen during the attack. The company is concerned about users downloading “custom” BIOS firmware from other sources, which can be unsafe and contain harmful software.
The reason behind MSI’s caution may be more related to the types of data that were stolen. Last week, a group of extortionists known as Money Message claimed to have stolen source code from several MSI products and other data from the company’s internal network. The attackers also published screenshots of databases and files containing closed keys and firmware BIOS.
MSI did not provide details on the scale of the security violations or what was stolen, stating only that it “discovered network anomalies,” and its IT department “activated the relevant protective mechanisms and took restoration measures.” The company also announced the incident to law enforcement and cybersecurity agencies.
MSI expressed its understanding of any possible consequences of the attack and stated that it has returned to normal operations. The company has also stated that it does not expect any significant impact on its financial indicators. It is unclear whether customer data has been compromised as a result of the attack.
The hackers have requested a ransom of $4 million, and have threatened to publish all the stolen files on April 10 if the payment is not made. The future of the event remains uncertain at this time.