Acer has confirmed that its India offices were hit this week after hackers affiliated with the Desorden Group claimed they breached servers and stole 60GB of files. The group sent an email to tech publication ZDNet about the hack, claiming to have customer and corporate business data, as well as financial records.
When queried, the hackers denied that they executed a ransomware attack and claimed to have access to the servers over some time. A spokesperson from Acer confirmed the attack to the publication, adding that their security team recently detected an isolated attack on its local after-sales service system in India.
The Acer spokesperson said that once it was detected, the security team deployed security protocols and did a full scan of Acer systems. The company said it is notifying potentially affected customers in the country. The incident has been reported to local law enforcement and the Indian Computer Emergency Response Team. The spokesperson added that the attack did not have any material impact on its operations and business continuity.
After getting the message from Acer, the tech publication asked the hackers if they still had access.
What the hackers said
The hackers said:
“Acer is a global network of vulnerable systems. We no longer have access to their India servers. This is all we can reveal now.”
This is the second cyberattack faced by the company after REvil attacked in March using ransomware. The group demanded $50 million, one of the highest reported ransoms at the time. Acer offered to pay $10 million, which the hackers rejected. Desorden said that it plans to attack supply chains and cause disorder and chaos that affects as many people as possible.