After the compromise of its servers in India, tech giant Acer was hacked again in Taiwan by the same threat actor.
In mid October, Acer revealed that its after-sales service systems in India were hit by an isolated attack. The incident was disclosed after the threat actors, Desorden, advertised the sale of more than 60 GB of data on an underground cybercrime forum. In response, Acer Taiwan took down the compromised server, and issued the following statement:
“We have recently detected an isolated attack on our local after-sales service system in India and a further attack in Taiwan. Upon detection, we immediately initiated our security protocols and conducted a full scan of our systems. We are notifying all potentially affected customers in India, while the attacked Taiwan system does not involve customer data. The incident has been reported to local law enforcement and relevant authorities, and has no material impact to our operations and business continuity.”
This is the third time this year that Acer suffers a data breach. In March, Acer was hit by REvil ransomware operators that compromised its systems and requested a record $50 million ransom. Acer had offered to pay the group $10 million, which was rejected by the hackers.
Read more about it here.