Acer confirms second security breach this year

A spokesperson for Taiwanese computer maker Acer has confirmed today that the company suffered a second security breach this year after hackers advertised the sale of more than 60 GB of data on an underground cybercrime forum.

Supposedly containing customer details and login information for Indian retailers and distributors, the data was shared on RAID, a forum used by threat actors over the past years to extort companies and sell stolen data.

Samples of the stolen data, along with a video of the rest of the files, were shared by the threat actor.

The Record was able to confirm some of the data that was leaked on Wednesday.


Responding to a request for comment sent yesterday by The Record, an Acer spokesperson confirmed the hack in an email earlier today, after the company notified its security team and investigated the hackers' claims.

The full unedited statement is available below:

We have recently detected an isolated attack on our local after-sales service system in India. Upon detection, we immediately initiated our security protocols and conducted a full scan of our systems. We are notifying all potentially affected customers in India. The incident has been reported to local law enforcement and the Indian Computer Emergency Response Team, and has no material impact to our operations and business continuity.

Steven Chung, Acer Corporate Communications

A representative for the hackers behind the Acer breach said they contacted the company but the Taiwanese vendor never responded. The hackers told The Record they had access to Acer India's network since mid-September to October 6.

Today's confirmation marks the second security breach that Acer has suffered this year after falling victim to a ransomware attack in March, during which the REvil ransomware group demanded a whopping $50 million from the computer maker.

This is also the second time Acer India's network has been breached after hackers stole 20,000 user credentials back in 2012.

Get more insights with the
Recorded Future
Intelligence Cloud.
Learn more.
No previous article
No new articles

Catalin Cimpanu

Catalin Cimpanu is a cybersecurity reporter for The Record. He previously worked at ZDNet and Bleeping Computer, where he became a well-known name in the industry for his constant scoops on new vulnerabilities, cyberattacks, and law enforcement actions against hackers.