Acer has recently confirmed that at least one internal server was compromised.Confirmation was made in a statement sent to beeping computerinquired about a hacker selling 160GB of “confidential information” to the highest bidder.
The screenshot below shows a forum post by a hacker who claims to have stolen Acer data. According to Acer, the data comes from a document server that acts as a resource for repair technicians. However, the hackers now claim to have various sensitive data in their hands that do not seem characteristic of the resource Acer describes. For example, repair technicians typically don’t need or have access to data such as “confidential slides/presentations”. However, the other stolen data the hacker boasts is consistent with his Acer description of resources such as technical manuals, ISOs and other software his images, product his keys, BIOS data, ROM files, etc. It seems that.
It looks like the data was stolen in mid-February of this year. In all, 160 GB of stolen data is said to be for sale on his web. It consists of 655 directories and 2,869 files. Additionally, several data samples were provided to support the server hacking claim.
There is no set price for stolen data. To solve the problem, the hacker is advertising a bid and looking for his PM via the forums shown in the screenshot. The “auction” is subject to several conditions, requires an intermediary to proceed with the sale, and must be paid in Monero cryptocurrency (XMR).
Acer says there is no indication that customer data has been compromised
Acer’s investigation into the perceived breach is still ongoing, but it remains clear that no customer data was stored on the affected servers.
Acer, the world’s fifth largest PC maker, has been a major target for hackers and seems to have had some bad luck in recent years. In October 2021, he had over 60 GB of data stolen, and in March of the same year, he paid his gang $50 million for ransomware that threatened to leak sensitive documents. Some may attribute frequent data breaches to carelessness, but that perception is bad for PC and server makers trying to attract and retain enterprise customers.
