MSI (Micro-Star International)—MSI suffered ransomware attack by Money Message group, leaking 1.5TB of data including firmware signing keys

Apr 6, 2023

In April 2023, MSI confirmed a cyberattack by the Money Message ransomware group. The attackers claimed to have exfiltrated 1.5TB of data and demanded $4M in ransom. Leaked data reportedly included Intel OEM private keys and firmware signing keys, creating a significant supply chain security risk as the keys could be used to sign malicious firmware updates that would appear legitimate.

Scoring Impact

Topic	Direction	Relevance	Contribution
Consumer Protection	-against	secondary	-0.50
User Privacy	-against	primary	-1.00
Overall incident score =			-0.322

Score = avg(topic contributions) × significance (high ×1.5) × confidence (0.57)× agency (negligent ×0.5)

Evidence (1 signal)

Confirms Legal Action Apr 6, 2023 documented

Money Message ransomware group claimed 1.5TB data exfiltration from MSI including firmware signing keys

MSI confirmed a cyberattack in April 2023 by the Money Message ransomware group, which claimed to have stolen 1.5TB of data. The leaked data reportedly included Intel OEM private keys and firmware signing keys, creating supply chain risks.

The Record

Related: Same Topics

Bhavish Aggarwal · Engaged in heated public feud with comedian over customer complaints, stock dropped 8%

Oct 7, 2024

Ola Electric · India's CCPA issued show cause notice after over 80,000 consumer complaints about EV quality

Oct 8, 2024

Zepto · Accused of charging iPhone users up to 5x more than Android users for identical products

Dec 1, 2024

Zepto · India's CCPA fined Zepto ₹7 lakh for using dark patterns including drip pricing and basket sneaking

Dec 5, 2024

Microsoft · Microsoft committed to expand right-to-repair options following shareholder pressure

Oct 7, 2021