Acer’s after-sales service systems were recently targeted by a cyber-attack in India. The hackers allegedly stole client and financial information from the company’s systems. Acer retailers and distributors in India had their login credentials stolen as well.
The hack was confirmed by the company, which described it as an isolated attack on its systems. As soon as the attack was discovered, it activated security protocols and ran a comprehensive scan of its systems.
Acer assures that the attack has no material impact to its business operations whatsoever. It says that it has informed the potentially affected customers of it, but does not reveal much about the attack itself, including the identity of the hackers.
The threat actor behind the cyber-attack, on the other hand, has already claimed responsibility for it on a hacker forum. According to a post on a forum on Wednesday, the attack was carried out by the hacker organisation Desorden, who stole over 60GB of files and databases from Acer’s servers in India.
The hackers also posted a video on the site showing the stolen data as proof of their gain. 10,000 client records, as well as stolen credentials for 3,000 Acer dealers and retailers in India, are included in the data. According to the hackers, the stolen information affects millions of Acer customers in India. They didn’t say what vulnerability they used to steal the information.
This isn’t the first time Acer’s servers have been targeted by hackers this year. The company was struck by the REvil ransomware assault in March, in which the hackers stole the company’s financial spreadsheets, bank communications, and bank balances. Using a Microsoft Exchange vulnerability, the hackers were able to steal data from Acer’s network.
The attackers demanded a hefty $50 million to return the stolen data after posting proof of the theft on a hacking site. Acer has never revealed whether or not it paid the ransom.