Taiwanese electronics manufacturer Acer has confirmed an incident of unauthorized access to one of its document servers for repair technicians.
In a statement shared with Information security In an email, the multinational added that it believed consumer data was not accessed because of the breach.
“While an investigation is ongoing, there is currently no indication that consumer data was stored on its servers,” the company said.
A threat actor calling itself “Kernelware” claimed responsibility for the hack on a dark web forum earlier this week. They said they carried out the attack in mid-February and stole 160 GB of information, including 655 directories and he 2869 files, from the company.
In the same forum post, Kernelware offered to sell allegedly stolen data for XMR (Monero), including slides and presentations, technical manuals, backend infrastructure data, product model documentation, and several devices. We have provided a sample that introduces information about
Acer has not confirmed any leaks, nor has it confirmed that the data posted by Kernelware is genuine.
According to Tim Schultz, vice president of research and engineering at Scythe, the breach may reflect a shift in the disposition of attackers who previously focused on ransomware.
“As businesses move away from paying ransoms, attackers are adapting by focusing on IP data theft and increasing the potential business impact of each breach. We’re going to see the same tactics that other attackers used to steal IPs and try to monetize them,” said Schultz.
Amit Sharma, security engineer at Synopsys, explained that while details are currently unknown, it remains imperative that organizations conduct due diligence to contain attacks and ensure data is safe. .
“Organizations need to have multiple layers of controls in place to detect or block these types of attacks, but as attacks grow in complexity, they need to be more rational and specific,” Sharma said. added Mr.
“This kind of attack also gives us a fair idea of why it is so important to implement asset controls and decide what needs to be monitored, what is exposed and what should be prioritized. It gives you an indication.”
Acer’s breach comes days after DoControl published a report suggesting that software as a service (SaaS) assets pose a significant risk to medium and large enterprises.
Editorial image credit: Anton Watman / Shutterstock.com
