MSI is warning its customers to only download firmware/BIOS updates from its official website following the detection of recent network anomalies. The PC hardware manufacturer did not disclose exactly what has transpired but did say that its teams acted promptly once the unusual activity was discovered and notified the appropriate government and law enforcement agencies along with Cybersecurity agencies.
As MSI is warning its customers not to download from unofficial sites, again (it had done so once before in May 2021), there is a possibility that hackers may have obtained files, but there has been no confirmation of this. Back in November 2022, researchers discovered that spoofed versions of MSI’s popular overclocking software, MSI Afterburner, were out in the wild and had been injected with mining malware. It’s possible that bad actors are out to find more files to compromise users’ systems with. Regardless of what may have happened users should pay close attention to any website links before downloading any MSI support or app files and heed MSI’s warning in order to avoid potential malware getting installed on their systems.
MSI Press Release
“MSI recently suffered a cyberattack on part of its information systems. Upon detecting network anomalies, the information department promptly activated relevant defense mechanisms and carried out recovery measures, and reported the incident to government law enforcement agencies and cybersecurity units. Currently, the affected systems have gradually resumed normal operations, with no significant impact on financial business.
MSI urges users to obtain firmware/BIOS updates only from its official website, and not to use files from sources other than the official website.
MSI is committed to protecting the data security and privacy of consumers, employees, and partners, and will continue to strengthen its cybersecurity architecture and management to maintain business continuity and network security in the future.“