A specific hacker gang has launched a second cyberattack against Acer in less than a week. The group claims that more regions are vulnerable.
Last week, threat actors identified as ‘Desorden’ revealed that they had hacked Acer India’s servers and stolen data, including client information. After the breach was announced, Acer said that it was an “isolated attack” that only affected their after-sales support systems in India.
“Upon detection, we immediately initiated our security protocols and conducted a full scan of our systems. We are notifying all potentially affected customers in India,” an Acer Corporate Communications spokesperson told BleepingComputer. “The incident has been reported to local law enforcement and the Indian Computer Emergency Response Team, and has no material impact to our operations and business continuity.”
In less than a week, Desorden claimed that on October 15th, they broke into Acer Taiwan’s systems and acquired information about employees and products. They also provided pictures of an internal Acer Taiwan portal and CSV files holding Acer staff login passwords.
The threat actors said the hack was carried out to show that Acer is still susceptible. According to Desorden, they didn’t request additional payment on the Taiwan breach. The intention behind the attack was to show how Acer has ignored its cybersecurity.
Soon after the threat actors informed Acer Taiwan of the vulnerability, the firm shut down the vulnerable server. According to the hacking gang, other servers in Malaysia and Indonesia are still susceptible.
Acer was also the victim of another hack in March 2021, when the REvil ransomware group locked their network and demanded a ransom of $50 million.
Desorden has a history of hacking into companies and exposing information when a ransom isn’t paid.
Last month, Desorden claimed to have hacked ABX Express, a Kerry Logistics company, and stolen 200 GB of data, including customers’ personal information.