The Philippines division of Taiwanese tech agency Acer has confirmed that info associated to its workers has been leaked after a third-party vendor suffered a safety breach.
An attacker referred to as “ph1ns” posted a hyperlink on a hacking discussion board to a stolen database containing worker attendance knowledge from Acer Philippines. The database reportedly included employees’ names, usernames, passwords, roles, departments, employer’s title, birthdates, cellular numbers, and electronic mail addresses.
Ph1ns stated they weren’t promoting the information, however providing it without cost to anybody .
Is the free entry to the stolen knowledge a sign that the attacker doesn’t assume that the stolen info is straightforward to monetise or an altruistic act by Ph1ns?
Your guess is pretty much as good as mine. However the hack of the unnamed third-party vendor was claimed to have occurred underneath the banner of “#OpEDSA” – a motion calling for political change within the Philippines, which has focused firms within the nation.
It is value underlining that the stolen knowledge was not taken instantly from Acer, and there was no proof of a breach within the firm’s methods.
As an alternative, it seems that the corporate managing Acer Philippines worker attendance knowledge suffered its personal safety breach. In fact, that’s little consolation for employees who will likely be understandably sad that their private particulars have fallen into the fingers of hackers and are being shared through hacking boards.
In a statement posted on Twitter, Acer Philippines additionally emphasised that no buyer knowledge was uncovered because of the leak.
That is definitely a silver lining for Acer laptop computer consumers. And a greater scenario than virtually ten years in the past when Acer’s ecommerce website was hacked permitting hackers to steal prospects’ particulars, together with (gulp!) cost card info.
Acer can as soon as extra argue that it wasn’t its infrastructure that was hacked, nevertheless it has suffered safety breaches prior to now – together with a $50 million ransomware attack, the theft of 60GB worth of files from its Indian servers.
All companies have to safe their methods and have faith that the information entrusted to 3rd events will likely be saved safely out of the attain of hackers.