Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Supermicro CEO Joins Cook in Calling for Bloomberg to Retract Supply Chain Hack Story

MacRumors

MacRumors

macrumors bot
Original poster
Apr 12, 2001
66,354
35,421



Last week, Apple CEO Tim Cook called on Bloomberg to retract a highly controversial story suggesting Chinese spies planted microchips in the Supermicro server motherboards used in Apple's data facilities, saying there was no truth to Bloomberg's claims.

Today, Supermicro Charles Liang joined Cook in calling for a retraction. In a statement shared by CNBC, Liang said that Supermicro has not found malicious hardware components in its products, nor has Bloomberg produced an affected Supermicro motherboard. Bloomberg, he says, should "act responsibly" and retract its "unsupported allegations."

big_hack.jpg

Liang's full statement:
Supermicro is committed to making world-class servers and storage products. Bloomberg's recent story has created unwarranted confusion and concern for our customers, and has caused our customers, and us, harm.

Bloomberg should act responsibly and retract its unsupported allegations that malicious hardware components were implanted on our motherboards during the manufacturing process.

The allegations imply there are a large number of affected motherboards. Bloomberg has not produced a single affected motherboard, we have seen no malicious hardware components in our products, no government agency has contacted us about malicious hardware components, and no customer has reported finding any malicious hardware components, either.
Click to expand...
Supermicro, like Apple and other companies involved, has denied all of Bloomberg's claims since the story was first released. Supermicro previously said it was not aware of any investigation nor any companies that had found illicit hardware in their Supermicro products.

Amazon Web Services CEO Andy Jassy also spoke out against Bloomberg today, saying that the story is "wrong about Amazon, too." Like Cook, Jassy says Bloomberg at no point offered proof or listened to what Amazon had to say about the situation.

@tim_cook is right. Bloomberg story is wrong about Amazon, too. They offered no proof, story kept changing, and showed no interest in our answers unless we could validate their theories. Reporters got played or took liberties. Bloomberg should retract. https://t.co/RZzuUt9fBM-- Andy Jassy (@ajassy) October 22, 2018
Click to expand...

Cook last week said that Apple "turned the company upside down" and dug "very deep" but could find absolutely no evidence that such an attack took place. "Each time we came back to the same conclusion: This did not happen," said Cook. "There's no truth to this."

Since Bloomberg released its report, Apple has refuted the site's claims in multiple clearly worded statements denying it happened. Bloomberg continues to stand by its original reporting, which, citing 17 sources, said Apple, Amazon, and other tech companies had purchased and installed Supermicro servers that had been tampered with by the Chinese government.

Along with Apple, Amazon, and Supermicro, multiple other sources have cast doubt on the information shared in Bloomberg's story. The UK's Cyber Security Agency, the Department of Homeland Security, former FBI general counsel James Baker, and NSA Senior Advisor Rob Joyce, for example, have all questioned the veracity of Bloomberg's claims and have denied knowledge of such an investigation.

Note: Due to the political nature of the discussion regarding this topic, the discussion thread is located in our Politics, Religion, Social Issues forum. All forum members and site visitors are welcome to read and follow the thread, but posting is limited to forum members with at least 100 posts.

Article Link: Supermicro CEO Joins Cook in Calling for Bloomberg to Retract Supply Chain Hack Story
 
Article Link
https://www.macrumors.com/2018/10/22/supermicro-calls-for-hack-story-retraction/
  • Like
Reactions: AngerDanger
Regardless of many ways Apple and Supermicro denied Bloomberg's claim; neither of them denied in a direct way; something like "Our servers are NOT impacted, they do not have any hacked spy chips".

Instead
Cook said "there's no truth to their claim"
Liang said "they should retract its unsupported allegations"

I really don't understand the dodging! If you're clean, why not claim your cleanliness the most convincing way and say "we are not hacked"?


Side note about Supermicro.... they don't make firmware updates to address Spectre/Meltdown vulnerabilities. I wonder if they want to continue having customers their new products. Just wondering...
 
Last edited:
  • Like
Reactions: dpjkillian, Villarrealadrian, dilbert99 and 4 others
sentiblue said:
Regardless of many ways Apple and Supermicro denied Bloomberg's claim; neither of them denied in a direct way; something like "Our servers are NOT impacted, they do not have any hacked spy chips".

Instead
Cook said "there's no truth to their claim"
Liang said "they should retract its unsupported allegations"

I really don't understand the dodging! If you're clean, why not claim your cleanliness the most convincing way and say "we are not hacked"?


Side note about Supermicro.... they don't make firmware updates to address Spectre/Meltdown vulnerabilities. I wonder if they want to continue having customers their new products. Just wondering...
Click to expand...

Wait, so Apple said:
Apple has never found malicious chips, "hardware manipulations" or vulnerabilities purposely planted in any server.
Click to expand...
How's that not a direct rebuttal????
 
  • Like
Reactions: CarlJ, mudflap, IG88 and 24 others
sentiblue said:
Regardless of many ways Apple and Supermicro denied Bloomberg's claim; neither of them denied in a direct way; something like "Our servers are NOT impacted, they do not have any hacked spy chips".

Instead
Cook said "there's no truth to their claim"
Liang said "they should retract its unsupported allegations"

I really don't understand the dodging! If you're clean, why not claim your cleanliness the most convincing way and say "we are not hacked"?


Side note about Supermicro.... they don't make firmware updates to address Spectre/Meltdown vulnerabilities. I wonder if they want to continue having customers their new products. Just wondering...
Click to expand...

I am not sure how old your SuperMicro kit is but they most certainly have released new bios versions that cover Meltdown and a bunch of the side channel vulns too as I’ve applied them. Usually though with SM it’s best to go to your integrator to get the latest BIOS on your behalf as they don’t publish them all to the public.
 
  • Like
Reactions: ArtOfWarfare
Whole story seemed made up from the start. So many holes in the whole thing even before the very detailed denial by Apple.
 
farewelwilliams said:
why hasn't super micro sued bloomberg? their stock tanked.
Click to expand...
Might be next step if they don’t get a retraction, we shall see!
[doublepost=1540255951][/doublepost]
lunarworks said:
Because the discourse in this place gets real stupid real fast when anything is even vaguely political.
Click to expand...
And that’s different than a typical thread how?
[doublepost=1540256118][/doublepost]
sanook997 said:
"Sources said".........is a ruse for lies and fabrications; more and more the media becomes less accountable to anyone,
Click to expand...
This reveals an immense lack of knowledge about journalism, which has always used anonymous sources. They are only anonymous to us, people! Good and bad journalism has little to do with this in and of itself.
 
  • Like
Reactions: Spectrum
sentiblue said:
Regardless of many ways Apple and Supermicro denied Bloomberg's claim; neither of them denied in a direct way; something like "Our servers are NOT impacted, they do not have any hacked spy chips".

Instead
Cook said "there's no truth to their claim"
Liang said "they should retract its unsupported allegations"

I really don't understand the dodging! If you're clean, why not claim your cleanliness the most convincing way and say "we are not hacked"?


Side note about Supermicro.... they don't make firmware updates to address Spectre/Meltdown vulnerabilities. I wonder if they want to continue having customers their new products. Just wondering...
Click to expand...

What, this?

https://www.supermicro.com/support/security_Intel-SA-00088.cfm?pg=X11#tab
[doublepost=1540257215][/doublepost]
AngerDanger said:
Here, Bloomberg, if we're making things up, I've animated your hack explanation to show how China infiltrated pencils. It's not true, but who cares, right?

View attachment 797530
Click to expand...

OMG, not my Apple Pencil too!
 
  • Like
Reactions: ArtOfWarfare, Scooz and AngerDanger
sentiblue said:
Regardless of many ways Apple and Supermicro denied Bloomberg's claim; neither of them denied in a direct way; something like "Our servers are NOT impacted, they do not have any hacked spy chips".

Instead
Cook said "there's no truth to their claim"
Liang said "they should retract its unsupported allegations"

I really don't understand the dodging! If you're clean, why not claim your cleanliness the most convincing way and say "we are not hacked"?


Side note about Supermicro.... they don't make firmware updates to address Spectre/Meltdown vulnerabilities. I wonder if they want to continue having customers their new products. Just wondering...
Click to expand...

Jesus, god- there’s reaching, and then there’s REALLY reaching, then there’s being abnormally desperate for a conspiracy theory to be true, then there’s.... well, I don’t actually know, but there’s at least two or three more levels before we hit where your comment lays.

You are honestly pitching the idea that a hack occurred, and while Amazon, Apple, & Supermicro are all denying it- they are each, individually, or in collusion- trying to leave a sliver of deniability, in case it ever comes to light that they’re lying through their teeth, they’ll have some slim “parsing of words” type of meager defense of what would be a fairly egregious & heinous act?

This is a BIZARRE theory! None of these companies would be looked down upon for falling victim to an uber-sophisticated tech scheme... people would be far more enraged w/ the perpetrators. However, if it came to light that these companies (in particular, the only two American companies to ever crack trillion dollar valuation) would rather openly lie, mislead, and dupe their customers (w/ nothing to gain.... not financially, nor are they in any legal danger), than just admit it... like Facebook, Equifax, Yahoo, ticketfly, etc. - it would have the downside ability to destroy said companies- their reputation, their stock price, they’d be forever tainted... for what??!! Bragging rights that they didn’t get hacked, when they actually did?
Your story is an INCREDIBLY hard sell. It makes zero sense, on any level.
 
Last edited:
  • Like
Reactions: CarlJ, Ethosik, IG88 and 13 others
so this is the year bloomberg finally gets shut down due to stupidity eh? I'm glad I am able to be apart of this and alive to see a 'giant' goes down to nothing.
 
expiredyogurt said:
so this is the year bloomberg finally gets shut down due to stupidity eh? I'm glad I am able to be apart of this and alive to see a 'giant' goes down to nothing.
Click to expand...

They're a $40 billion company and this was one article by one author out of literally thousands they publish every month. They aren't going anywhere.
 
  • Like
Reactions: arkitect and vmistery
Bloomberg had another dubious story today: Now Apps Can Track You Even After You Uninstall Them:
If it seems as though the app you deleted last week is suddenly popping up everywhere, it may not be mere coincidence. Companies that cater to app makers have found ways to game both iOS and Android, enabling them to figure out which users have uninstalled a given piece of software lately—and making it easy to pelt the departed with ads aimed at winning them back. [...]
Click to expand...

Bloomberg | Quint cited manufacturers of tracking software -- including AppsFlyer. But AppsFlyer's own documentation notes a clear limitation of their tool:
Uninstall tracking is not possible for users who reject Push Notification permissions.
Click to expand...

Bloomberg is definitely overreaching with this new story. They didn't tell the whole truth.
 
sentiblue said:
Regardless of many ways Apple and Supermicro denied Bloomberg's claim; neither of them denied in a direct way; something like "Our servers are NOT impacted, they do not have any hacked spy chips".

Instead
Cook said "there's no truth to their claim"
Liang said "they should retract its unsupported allegations"

I really don't understand the dodging! If you're clean, why not claim your cleanliness the most convincing way and say "we are not hacked"?
Click to expand...

You may want to read Apple's letter denying the allegations because what you state does not square up with reality.
 
  • Like
Reactions: BvizioN, profets and diandi
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back