Apple supplier Quanta confirms ransomware attack

REvil ransomware group strikes again

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Cybercriminals have published the design forApple’s upcomingMacBook Prorefresh online following a successfulransomwareattack on one of the company’s biggest suppliers.

Quanta Computer is a Taiwan-based ODM laptop manufacturer that recently confirmed it servers had suffered a cyberattack. In astatementtoBloomberg, a company spokesperson acknowledged the attack, saying:

“Quanta Computer’s information security team has worked with external IT experts in response to cyber attacks on a small number of Quanta servers. We’ve reported to and kept seamless communications with the relevant law enforcement and data protection authorities concerning recent abnormal activities observed. There’s no material impact on the company’s business operation.”

While Quanta did not go into details regarding the attack itself as an investigation is still underway, the ransomware gangREvilhas taken responsibility and is in the process of “negotiating the sale” of data stolen in the attack “with several major brands”, according toThe Register.

Quanta ransomware attack

The REvil ransomware group has shared additional details on its “Happy Blog” which it uses to name and shame its victims. In a post on its blog, the group claimed that it deployed ransomware on Quanta’s servers and was able to obtain confidential blueprints for upcoming Apple products.

So far REvil has published some of the blueprints it has acquired including one for an unreleased MacBook dated March 2021 and as the company’s lastbusiness laptopwas released in November of last year, the design could be for an upcoming device.

The ransomware group has demanded that Quanta pay it 123,028Monero($50m) to delete the files it has stolen and decrypt the company’s locked systems. This is because cybercriminals have begun to move away from demanding their ransoms inBitcoinin favor of Monero as it is much harder to track.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Earlier this year REvil deployed ransomware on another Taiwanese hardware maker’s networks when ithacked Acer. At the time, the group also asked for $50m incryptocurrencyto decryptAcer’s files with the threat that it would increase the ransom to $100m if the company refused to agree to its terms.

While REvil has acquired Apple’s blueprints and confidential data, it is still unclear as to whether or not it also obtained documents for Quanta’s other clients which includeHP, Facebook andGoogleamong others.

ViaThe Register

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home.

This new phishing strategy utilizes GitHub comments to distribute malware

Should your VPN always be on?

Anker Nebula Mars 3 review: A powerful and truly portable projector