Register now for better personalized quote!

Acer confirms second cyberattack in 2021 after ransomware incident in March

Oct, 14, 2021 Hi-network.com

Recommends

The best security key

While robust passwords help you secure your valuable online accounts, hardware-based two-factor authentication takes that security to the next level.

Read now

Acer has confirmed a cyberattack on its offices in India this week after hackers with the Desorden Group claimed to have breached servers and stolen 60GB of files. 

The group emailedZDNetabout the hack, claiming to have customer and corporate business data as well as financial information. When asked, the hackers denied it was a ransomware attack and claimed to have access to the company's servers "over time."

A spokesperson from Acer confirmed the hack, tellingZDNetthat their security team recently detected an "isolated attack" on its local after-sales service system in India.

"Upon detection, we immediately initiated our security protocols and conducted a full scan of our systems," an Acer spokesperson said. "We are notifying all potentially affected customers in India. The incident has been reported to local law enforcement and the Indian Computer Emergency Response Team, and has no material impact to our operations and business continuity." 

After receiving the message from Acer,ZDNetasked the hackers whether they still had access. 

"Acer is a global network of vulnerable systems. We no longer have access to their India servers. This is all we can reveal now," the hackers said in a follow-up message. 

This is the second cyberattack Acer has suffered this year after being hit with ransomware in March.

The REvil ransomware group claimed the attack and demanded a$50 million ransom, one of the highest reported at the time. Acer offered to pay the group$10 million, which was rejected by the hackers. 

The Record reported that the data stolen recently by the Desorden Group was posted to cybercriminal forum RAID as well as being sent to reporters. 

Acer India was hit with a similar cyberattack in 2012 by a Turkish cybercriminal group, according to DataBreaches.net. The attackers defaced the company website and leaked 20,000 user credentials at the time. 

DataBreaches.net reported last month that the Desorden Group recently claimed to have hacked into the Malaysian servers of ABX Express Enterprise on September 23.

Like the latest attack, the group sent reporters portions of the stolen files and posted them into the RAID forum. They claimed to have stolen 200GB of information including the data of millions of Malaysians. 

In messages to the site, the group said their name stands for "chaos and disorder" and had reorganized after originally going by the name "Chaos CC."

The group said it plans to attack supply chains and cause "disorder and chaos" that affects as many people as possible. The Desorden Group said it plans to hold data ransom and sell it if they are not paid. At the time, they claimed to have been negotiating a ransom with an unnamed Italian automotive supply company. 

Security

8 habits of highly secure remote workersHow to find and remove spyware from your phoneThe best VPN services: How do the top 5 compare?How to find out if you are involved in a data breach -- and what to do next
  • 8 habits of highly secure remote workers
  • How to find and remove spyware from your phone
  • The best VPN services: How do the top 5 compare?
  • How to find out if you are involved in a data breach -- and what to do next

tag-icon Hot Tags : Tech Security

Copyright © 2014-2024 Hi-Network.com | HAILIAN TECHNOLOGY CO., LIMITED | All Rights Reserved.