Tech giant Acer has confirmed that it suffered a data breach after threat actors hacked a server hosting private documents used by repair technicians. However, the company says that its investigation results so far do not indicate that this security incident has affected customer data.
The confirmation of a data breach comes after a threat actor began selling what they claim is 160 GB of stolen data from Acer on a popular hacking forum in mid-February 2023.
The threat actor claims that the stolen data includes technical manuals, software tools, backend infrastructure details, product model documentation for phones, tablets, and laptops, BIOS images, ROM files, ISO files, and digital replacement product keys (RDPKs).
As proof that they have stolen data, the threat actor distributed screenshots of technical schematics for the Acer V206HQL display, documents, BIOS definitions, and confidential documents.
The data dump stated that they would sell the entire dataset to the highest bidder, clarifying that they would only accept the hard-to-trace cryptocurrency Monero (XMR) as a form of payment.
After contacting Acer about the data breach, a company spokesperson confirmed to BleepingComputer that it suffered a breach on one of its document servers for repair technicians.
“We recently detected an unauthorized access incident on one of our document servers for repair technicians. While our investigation is ongoing, there is currently no indication that consumer data was stored on that server.” – Acer.
This breach comes after Acer suffered other security incidents in recent years.
In March 2021, the computer manufacturer was hit by the REvil ransomware gang, demanding a record ransom payment of $50,000,000 in exchange for a decryptor while threatening to disclose confidential financial documents.
In October 2021, Acer confirmed that its post-sales systems in India were breached by a hacking group known as Desorden. Over 60 GB of data were stolen from its servers, including records of tens of thousands of customers, distributors, and retailers.
Desorden also breached Acer Taiwan’s servers in the same week, stealing information about employees, including their login credentials.
The increasing frequency and severity of security breaches make it clear that no organization is immune to such attacks. It is essential for companies to continually update their security measures to prevent future breaches.
The recent data breach at Acer highlights the ongoing challenges that companies face in keeping their data secure. The theft of technical manuals, software tools, and other confidential documents by hackers is a cause for concern for Acer and its customers.
It is vital for companies to remain vigilant and invest in robust security measures to protect their data from cybercriminals. With the increasing sophistication of cyber attacks, businesses must recognize the importance of staying up-to-date with the latest security trends and technologies.
Acer’s breach serves as a reminder that cybersecurity should be a top priority for every organization, no matter how big or small. The consequences of a breach can be severe, ranging from reputational damage to financial losses and legal action.