Acer Philippines has officially confirmed a huge employee data leak. The breach occurred through a third-party vendor responsible for managing Acer’s employee attendance data. The data stolen in Acer data breach was subsequently leaked on a hacking forum by a threat actor known as ‘ph1ns’.
Acer Employee Data Leak was Purely a Data Theft Attack and Not a Ransomware Incident
The Acer data breach incident came to light when the threat actor shared a link on a hacking forum, allowing individuals to freely download the compromised Acer employee database.
The attacker responsible for the Acer data breach clarified that their motive was purely data theft, with no involvement of ransomware or encryption.
They explicitly stated that their intention was not to extort the company. However, they did provide evidence indicating that they had wiped data from the compromised servers before losing access.
Source: BleepingComputer
Company Officials’ Public Statement on Acer Data Breach
An official spokesperson from Acer has acknowledged that the stolen data belongs to the company. However, they have clarified that the data was not acquired directly from their own internal systems.
“We are aware that one of our external vendors in the Philippines has suffered a data breach, and as a result, a limited set of employee data has been compromised,”
“While we are working with the vendor, cybersecurity experts and law enforcement, we would like to emphasize that no customer data has been affected and there is no evidence of any breach of Acer’s systems.”
A spokesperson said in a statement
Following the Acer employee data leak, Acer Philippines released a public statement to reassure customers about the security of their data. They confirmed that their systems have not been compromised, providing additional confidence in the integrity of customer information.
To address the data breach, Acer Philippines has taken the necessary steps and promptly notified the relevant authorities, including the National Privacy Commission (NPC) and the Cybercrime Investigation and Coordinating Center (CICC) in the Philippines.
An investigation into the incident is currently underway to determine the full extent of the breach and identify any potential measures to prevent future occurrences.
