PC manufacturer MSI hit with malicious ransomware attack
MSI, the PC manufacturer behind components, laptops, and peripherals, has confirmed that they’ve been hit by a ransomware attackby a hacking group.
Manufacturer MSIhas posted to their website and the Taiwanese stock exchange that the company is currently handling aransomware attack. The group taking responsibility for it, Money Message, has infected internal systems at MSI and is now demanding $4 million to not begin leaking company assets.
MSI has seemingly downplayed the situation in theirpress release, as they make no mention of whether the hack is ongoing:
“Currently, the affected systems have gradually resumed normal operations, with no significant impact on financial business.”
However, the Money Message group currently has hostage information pertaining MSI’s hardware, including the BIOS source code formotherboards. If the group isn’t satiated, leaking that type of software onto the web could lead to a major problem down the road.
Money Message is currently counting down a timer for over 100 hours. Once the countdown timer ends, they plan to release the 27GB of data to the public.
MSI hit by new ransomware group Money Message
Ransomware is not a new phenomenon, with its foundations rooted in the 80s, and its explosion happening sometime in the mid-2000s.Mikko Hypponen, Chief Research Officer at F-Secure hasdubbed it“Ransomware 2.0”, where it’ll encrypt data and demand cash, as well as threaten to leak it out.
Money Message hasn’t been around too long, with their first major hack being reported on Bleeping Computer’sforumson March 28. Zscaler’s Threat Labs then reported that they’d caught wind of the group a day later.
Asus turns Hatsune Miku into a gaming PC with custom RTX 5080 & more
Gen.G triumph over T1 at MSI 2025: Schedule, recap & more
Amazon driver loses it with “laziest ever” customer in super viral meltdown
💰ThreatLabz has discovered a new#ransomwaregroup named Money Message performing double extortion attacks.Sample hash: bbdac308d2b15a4724de7919bf8e9ffa713dea60ae3a482417c44c60012a654bData leak site: blogvl7tjyjvsfthobttze52w36wwiz34hrfcmorgvdzb6hikucb7aqd[.]onionpic.twitter.com/P7xYnHy6wL
Money Message’s website currently has seven pages of ransomware attacks they’ve accomplished, including small businesses and large firms, as well as a Bengali airline.
It’s currently unknown if Money Message will go through with the leak, or if MSI plans to pay the ransom off. Either way, MSI has stated to only use official download links going forward from its website.
