The Philippines division of Taiwanese tech agency Acer has confirmed that data associated to its workers has been leaked after a third-party vendor suffered a safety breach.
An attacker known as “ph1ns” posted a hyperlink on a hacking discussion board to a stolen database containing worker attendance information from Acer Philippines. The database reportedly included employees’ names, usernames, passwords, roles, departments, employer’s title, birthdates, cell numbers, and e-mail addresses.
Ph1ns stated they weren’t promoting the information, however providing it without cost to anybody .
Is the free entry to the stolen information a sign that the attacker doesn’t suppose that the stolen data is straightforward to monetise or an altruistic act by Ph1ns?
Your guess is pretty much as good as mine. However the hack of the unnamed third-party vendor was claimed to have occurred beneath the banner of “#OpEDSA” – a motion calling for political change within the Philippines, which has focused corporations within the nation.
It is price underlining that the stolen information was not taken immediately from Acer, and there was no proof of a breach within the firm’s programs.
As a substitute, it seems that the corporate managing Acer Philippines worker attendance information suffered its personal safety breach. Â In fact, that’s little consolation for employees who shall be understandably sad that their private particulars have fallen into the fingers of hackers and are being shared through hacking boards.
In a assertion posted on Twitter, Acer Philippines additionally emphasised that no buyer information was uncovered because of the leak.
That is definitely a silver lining for Acer laptop computer consumers. And a greater state of affairs than virtually ten years in the past when Acer’s ecommerce web site was hacked permitting hackers to steal prospects’ particulars, together with (gulp!) cost card data.
Acer can as soon as extra argue that it wasn’t its infrastructure that was hacked, nevertheless it has suffered safety breaches previously – together with a $50 million ransomware assault, the theft of 60GB price of information from its Indian servers.
All companies must safe their programs and trust that the information entrusted to 3rd events shall be saved safely out of the attain of hackers.
