Cybercriminals have published the design for Apple's upcoming MacBook Pro (opens in new tab) refresh online following a successful ransomware (opens in new tab) attack on one of the company's biggest suppliers.
Quanta Computer is a Taiwan-based ODM laptop manufacturer that recently confirmed it servers had suffered a cyberattack. In a statement (opens in new tab) to Bloomberg, a company spokesperson acknowledged the attack, saying:
“Quanta Computer’s information security team has worked with external IT experts in response to cyber attacks on a small number of Quanta servers. We’ve reported to and kept seamless communications with the relevant law enforcement and data protection authorities concerning recent abnormal activities observed. There’s no material impact on the company’s business operation.”
- We've assembled a list of the best business laptops (opens in new tab) available
- These are the best mobile workstations (opens in new tab) on the market
- Also check out our roundup of the best laptops for programming (opens in new tab)
While Quanta did not go into details regarding the attack itself as an investigation is still underway, the ransomware gang REvil (opens in new tab) has taken responsibility and is in the process of “negotiating the sale” of data stolen in the attack “with several major brands”, according to The Register (opens in new tab).
Quanta ransomware attack
The REvil ransomware group has shared additional details on its “Happy Blog (opens in new tab)” which it uses to name and shame its victims. In a post on its blog, the group claimed that it deployed ransomware on Quanta's servers and was able to obtain confidential blueprints for upcoming Apple products.
So far REvil has published some of the blueprints it has acquired including one for an unreleased MacBook dated March 2021 and as the company's last business laptop (opens in new tab) was released in November of last year, the design could be for an upcoming device.
The ransomware group has demanded that Quanta pay it 123,028 Monero (opens in new tab) ($50m) to delete the files it has stolen and decrypt the company's locked systems. This is because cybercriminals have begun to move away from demanding their ransoms in Bitcoin (opens in new tab) in favor of Monero as it is much harder to track.
Earlier this year REvil deployed ransomware on another Taiwanese hardware maker's networks when it hacked Acer (opens in new tab). At the time, the group also asked for $50m in cryptocurrency (opens in new tab) to decrypt Acer's files with the threat that it would increase the ransom to $100m if the company refused to agree to its terms.
While REvil has acquired Apple's blueprints and confidential data, it is still unclear as to whether or not it also obtained documents for Quanta's other clients which include HP, Facebook and Google among others.
- We've also featured the best ransomware protection (opens in new tab)
Via The Register (opens in new tab)