June 2, 2023 at 12:25PM

Money message ransomware group hacks MSI and steals BIOS / Intel keys which will enable bad actors to code sign the firmware and send as an update to MSI systems.

MSI Signing Keys for Intel Boot Guard we’re released by the group.

Now anyone can sign device firmware with MSI private keys. This represents a long-term persistent risk to be considered by all users.

The data is leaked after MSI ignored to pay the group.

https://vt.tiktok.com/ZSLNqWmTx/

https://www.bleepingcomputer.com/news/security/money-message-ransomware-gang-claims-msi-breach-demands-4-million/

MSI leak: tips for users, organizations, and developers

https://socradar.io/money-message-ransomware-leaks-msi-signing-keys-for-intel-boot-guard/

https://t.me/cKure/12452