The Philippines division of Taiwanese tech agency Acer has confirmed that info associated to its staff has been leaked after a third-party vendor suffered a safety breach.
An attacker known as “ph1ns” posted a hyperlink on a hacking discussion board to a stolen database containing worker attendance information from Acer Philippines. The database reportedly included employees’ names, usernames, passwords, roles, departments, employer’s identify, birthdates, cellular numbers, and electronic mail addresses.
Ph1ns mentioned they weren’t promoting the information, however providing it without cost to anybody .
Is the free entry to the stolen information a sign that the attacker doesn’t assume that the stolen info is simple to monetise or an altruistic act by Ph1ns?
Your guess is pretty much as good as mine. However the hack of the unnamed third-party vendor was claimed to have occurred below the banner of “#OpEDSA” – a motion calling for political change within the Philippines, which has focused firms within the nation.
It is price underlining that the stolen information was not taken instantly from Acer, and there was no proof of a breach within the firm’s methods.
As an alternative, it seems that the corporate managing Acer Philippines worker attendance information suffered its personal safety breach. Â In fact, that’s little consolation for employees who might be understandably sad that their private particulars have fallen into the palms of hackers and are being shared by way of hacking boards.
In a assertion posted on Twitter, Acer Philippines additionally emphasised that no buyer information was uncovered because of the leak.
That is actually a silver lining for Acer laptop computer patrons. And a greater scenario than nearly ten years in the past when Acer’s ecommerce web site was hacked permitting hackers to steal clients’ particulars, together with (gulp!) cost card info.
Acer can as soon as extra argue that it wasn’t its infrastructure that was hacked, however it has suffered safety breaches up to now – together with a $50 million ransomware assault, the theft of 60GB price of information from its Indian servers.
All companies must safe their methods and trust that the information entrusted to 3rd events might be saved safely out of the attain of hackers.