Home > Tech > Tech Industry

Apple confirms a limited Supermicro malware attack

China has infiltrated US companies.
 By 
Rachel Kraus
 on 
Share on Facebook Share on Twitter Share on Flipboard
Apple confirms a limited Supermicro malware attack
Chinese bad actors have infiltrated US companies. Credit: Artur Widak/NurPhoto via Getty Images

Correction 9/6/2018, 12 p.m. PT:

A previous version of this story stated that Facebook had confirmed the presence of infected Supermicro servers in its testing labs. This was not the case. Facebook heard from industry groups that Supermicro servers may have been affected. It has not confirmed whether or not these testing lab servers were compromised. The story has been corrected to reflect the record.

--

The plot thickens.

In a follow-up to its bombshell report about a Chinese supply-chain attack on major U.S. companies including Apple and Amazon via the server manufacturer Supermicro, Bloomberg says bad actors also infiltrated the servers with malware.

SEE ALSO: Amazon, Apple deny Bloomberg's well-sourced report of a massive Chinese hardware hack

In a departure from Amazon and Apple's denial over the previous reports, Apple confirmed that it found malware on their Supermicro servers.

Apple says it discovered malware on a single server in 2016. This does not conflict with its denial of hardware attack; in fact, it bolsters it, because Apple cites the malware as the reason it dropped Supermicro as a vendor in its official statement — not the presence of malicious microchips in servers.

Apple wasn't the only company that may have been vulnerable. Facebook said that, in 2015, industry partners made the company aware of "malicious manipulation of software related to Supermicro."

At the time, Facebook had purchased "a limited number of Supermicro hardware, for testing purposes confined to our labs." Its investigation found that Facebook wasn't using any Supermicro servers or motherboards outside of lab settings. Now, Facebook is in the process of removing the servers, although it has not found malware.

Still, it's in Facebook's interest to be diligent, especially given the recent data breach that affected 50 million people.

Apple's confirmation and Facebook's awareness of the issue is significant because it confirms that Chinese actors have made attempts to compromise U.S. security. This is something the Chinese government is denying, per Bloomberg. What's unclear now is the extent of the breach and whether, or why, Amazon and Apple may have had reason to deny the chip attack.

Featured Video For You
Facebook's data breach and what it means for you — Technically Speaking

Topics Apple Cybersecurity Facebook

Mashable Image
Rachel Kraus

Rachel Kraus is a Mashable Tech Reporter specializing in health and wellness. She is an LA native, NYU j-school graduate, and writes cultural commentary across the internetz.

Mashable Potato
Recommended For You
Everything you need to know about the malware stealing data from Mac users
By Matt Binder
MacBook in the dark using Terminal
Do you have one of these 17 browser extensions? They could be tracking your browsing history.
By Tim Marcin
safari and chrome apps on phone
FBI investigates Steam games with hidden malware
By Matt Binder
Steam logo on laptop
Popular Chrome extension disabled for containing malware
By Matt Binder
Google Chrome logo
Newly discovered malware 'pranks' its victims – just in time for April Fools' Day
By Matt Binder
Hacker at laptop
More in Tech
How to watch Chelsea vs. Port Vale online for free
By Joseph Green
Alejandro Garnacho of Chelsea reacts
How to watch 'Wuthering Heights' at home: Margot Robbie and Jacob Elordi's controversial romance now streaming
By Christina Buff
Margot Robbie and Jacob Elordi embracing in still from "Wuthering Heights"
How to watch New York Islanders vs. Philadelphia Flyers online for free
By Joseph Green
Matthew Schaefer of the New York Islanders warms up
How to watch Mexico vs. Belgium online for free
By Joseph Green
Israel Reyes of Mexico reacts
How to watch Brazil vs. Croatia online for free
By Joseph Green
Vinicius Junior #10 of Brazil leaves
Trending on Mashable
NYT Connections hints today: Clues, answers for April 3, 2026
By Mashable Team
Connections game on a smartphone
Wordle today: Answer, hints for April 3, 2026
By Mashable Team
Wordle game on a smartphone
Google launches Gemma 4, a new open-source model: How to try it
By Matt Binder
Google Gemma
NYT Strands hints, answers for April 3, 2026
By Mashable Team
A game being played on a smartphone.
AirDrop on Pixel: Every Google smartphone that supports the Apple feature
By Alex Perry
Google Pixel 10 against blue background
The biggest stories of the day delivered to your inbox.
These newsletters may contain advertising, deals, or affiliate links. By clicking Subscribe, you confirm you are 16+ and agree to our Terms of Use and Privacy Policy.
Thanks for signing up. See you at your inbox!