Motherboard maker MSI announced today that they’re been the victim of a cyber attack and warned about rogue firmware.
Seems obvious that one should only load motherboard firmware from BLOBs provided by the mobo maker. If someone compromised MSI, they may be able to effectively provide functional yet subverted firmware. That would be a rootkit author’s dream.
It’s not clear if MSI’s firmware distribution channel was subverted. Did someone break into MSI and replace their public downloads with cracked firmware? They don’t say this happened. Another concern would be if the hackers got away with signing keys or source code that would allow them to write their own evil firmware.
So if you’re a gamer, be careful! Thanks to LowEndTalk admin @DP for sharing the news.
Here’s the press release from MSI:
MSI recently suffered a cyberattack on part of its information systems. Upon detecting network anomalies, the information department promptly activated relevant defense mechanisms and carried out recovery measures, and reported the incident to government law enforcement agencies and cybersecurity units. Currently, the affected systems have gradually resumed normal operations, with no significant impact on financial business.
MSI urges users to obtain firmware/BIOS updates only from its official website, and not to use files from sources other than the official website.
MSI is committed to protecting the data security and privacy of consumers, employees, and partners, and will continue to strengthen its cybersecurity architecture and management to maintain business continuity and network security in the future.
Related Posts:
- The Free $8 Million Mainframe is Now Updated and Better Than Ever! - December 29, 2024
- Limitless Hosting is Welcoming the New Year with a $3/YEAR Shared Hosting Offer! - December 28, 2024
- We Need Your Help to Get Everyone This Amazing Flash Deal!2GB VPS for $3/Year! - December 27, 2024
Leave a Reply