Compal, a Taiwanese laptop manufacturer that produces laptops for companies including Apple, Acer, Dell, and Toshiba, fell victim to a ransomware attack over the weekend. This marks the third major Taiwanese company attacked by ransomware gangs this year. DoppelPaymer is believed to be behind the attack which was discovered Sunday morning. Compal’s Deputy Manager Director has admitted the company had been hacked, but denies it was a ransomware attack. He told reporters Compal is not being blackmailed and said only internal networks were affected and not Compal’s production lines. Compal executives believes the company will resume normal operations by the end of the day.
DopplePaymer is distributed through compromising an insecure RDP configuration, using email spam and malicious attachments, deceptive downloads, botnets, exploits, malicious ads, web injects, fake updates, or repackaged and infected installers. First seen in June 2019, It is believed there are now eight variants of DopplePaymer. They launched a “victim shaming” site in February of this year, which does not currently list Compal as a victim.