Security News > 2023 > May > MSI Data Breach: Private Code Signing Keys Leaked on the Dark Web
The threat actors behind the ransomware attack on Taiwanese PC maker MSI last month have leaked the company's private code signing keys on their dark website.
"Confirmed, Intel OEM private key leaked, causing an impact on the entire ecosystem," Alex Matrosov, founder and CEO of firmware security firm Binarly, said in a tweet over the weekend.
Present in the leaked data are firmware image signing keys associated with 57 PCs and private signing keys for Intel Boot Guard used on 116 MSI products.
The Boot Guard keys from MSI are believed to impact several device vendors, including Intel, Lenovo and Supermicro.
The leak of the keys poses significant risks as threat actors could use them to sign malicious updates and other payloads and deploy them on targeted systems without raising any red flags.
In October 2022, Intel acknowledged the leak of Alder Lake BIOS source code by a third party, which also included the private signing key used for Boot Guard.
News URL
https://thehackernews.com/2023/05/msi-data-breach-private-code-signing.html
Related news
- Tor insists its network is safe after German cops convict CSAM dark-web admin (source)
- Dell investigates data breach claims after hacker leaks employee info (source)
- Disney ditching Slack after massive July data breach (source)
- A data leak and a data breach (source)
- U.S. govt agency CMS says data breach impacted 3.1 million people (source)
- Companies mentioned on the dark web at higher risk for cyber attacks (source)
- Dutch Police: ‘State actor’ likely behind recent data breach (source)
- Comcast and Truist Bank customers caught up in FBCS data breach (source)
- Dutch police arrest admin of 'Bohemia/Cannabia' dark web market (source)
- Internet Archive hacked, data breach impacts 31 million users (source)