Motherboard maker MSI announced today that they’re been the victim of a cyber attack and warned about rogue firmware.
Seems obvious that one should only load motherboard firmware from BLOBs provided by the mobo maker. If someone compromised MSI, they may be able to effectively provide functional yet subverted firmware. That would be a rootkit author’s dream.
It’s not clear if MSI’s firmware distribution channel was subverted. Did someone break into MSI and replace their public downloads with cracked firmware? They don’t say this happened. Another concern would be if the hackers got away with signing keys or source code that would allow them to write their own evil firmware.
So if you’re a gamer, be careful! Thanks to LowEndTalk admin @DP for sharing the news.
Here’s the press release from MSI:
MSI recently suffered a cyberattack on part of its information systems. Upon detecting network anomalies, the information department promptly activated relevant defense mechanisms and carried out recovery measures, and reported the incident to government law enforcement agencies and cybersecurity units. Currently, the affected systems have gradually resumed normal operations, with no significant impact on financial business.
MSI urges users to obtain firmware/BIOS updates only from its official website, and not to use files from sources other than the official website.
MSI is committed to protecting the data security and privacy of consumers, employees, and partners, and will continue to strengthen its cybersecurity architecture and management to maintain business continuity and network security in the future.
Related Posts:
- Early Black Friday Offer: VersaWeb has a Dedi Deal in Las Vegas, Dallas, and Miami! - November 23, 2024
- LowEndBoxTV: Are All Hetzner Locations Alike?No!And Piotr Has the Proof: “This is Clearly Not the Same Processor” - November 22, 2024
- One Week From Tomorrow…THE WORLD WILL LOSE THEIR MINDS!Lines Are Already Forming! - November 21, 2024
Leave a Reply