Laptop manufacturer Compal has been hit by a ransomware attack which saw attackers demanding a ransom of close to £13 million.
Compal, which is based in Taiwan, is considered the second-largest laptop manufacturer in the world after Quanta Computers. It is known for handling the design and production of monitors, tablets, and television screens for tech giants such as Apple, Acer, Lenovo, Dell, Toshiba, HP, and Fujitsu.
However, its high-ranking status did not stop the company from falling victim to a ransomware attack over the weekend.
Taiwanese media were quick to report that Compal had been hit by a cyber attack. At first, the laptop manufacturer denied that it was being blackmailed by cyber criminals and blamed the issue on an "abnormality" in their office automation system. However, BleepingComputer managed to obtain the ransom note and confirmed that the company had in fact suffered a DoppelPaymer ransomware attack.
The publication also found that, according to the DoppelPaymer Tor payment site linked in the ransom note, Compal had been asked to pay 1,100 Bitcoins, which is around £12,906,473, to receive a decryptor.
Doppelmayer has been previously linked to the recent attack on Newcastle University, as well as the attacks on Elon Musk's companies SpaceX and Tesla earlier this year.
The group behind DoppelPaymer also reportedly offer their services for others to use, similar to the 'ransomware as a service' (RaaS) operation run by the Netwalker group, which has reportedly made over $29 million since March.
RELATED RESOURCE
Cyber security automation for dummies
Tips for automating security responses and optimising your security ecosystem
Compal spokesperson Lu Qingxiong told Taiwanese business news website UDN that the company had informed its suppliers that the incident was likely to affect some projects in the short term but added that most of the issues had been resolved.
ITWire reported that Compal likely hasn't yet responded to the ransom note, as the group behind DoppelPaymer have not listed the ransomware attack on their dark web site. It is not yet known whether the laptop manufacturer is planning to pay the ransom.
-
Prolific ransomware operator added to Europe’s Most Wanted list as US dangles $10 million rewardNews The US Department of Justice is offering a reward of up to $10 million for information leading to the arrest of Volodymyr Viktorovych Tymoshchuk, an alleged ransomware criminal.
-
Jaguar Land Rover “did the right thing” shutting down systems to thwart cyber attackNews The attack on Jaguar Land Rover highlights the growing attractiveness of the automotive sector
-
Ransomware attack on IT supplier disrupts hundreds of Swedish municipalitiesNews The attack on IT systems supplier Miljödata has impacted public sector services across the country
-
A notorious hacker group is ramping up cloud-based ransomware attacksNews The Storm-0501 threat group is refining its tactics, according to Microsoft, shifting away from traditional endpoint-based attacks and toward cloud-based ransomware.
-
Security researchers have just identified what could be the first ‘AI-powered’ ransomware strain – and it uses OpenAI’s gpt-oss-20b modelNews Using OpenAI's gpt-oss:20b model, ‘PromptLock’ generates malicious Lua scripts via the Ollama API.
-
Data I/O shuts down systems in wake of ransomware attack
News Regulatory filings by Data I/O suggest the costs of dealing with the attack could be significant
-
Average ransom payment doubles in a single quarterNews Targeted social engineering and data exfiltration have become the biggest tactics as three major ransomware groups dominate
-
BlackSuit ransomware gang taken down in latest law enforcement sting – but members have already formed a new groupNews The notorious gang has seen its servers taken down and bitcoin seized, but may have morphed into a new group called Chaos
