Acer has allegedly been the victim of a massive ransomware attack, in which hackers demand $ 50 million to release stolen data from the company. Bleeping Computer reported Friday. However, the company has not publicly confirmed the attack, vaguely stating that “companies like us are constantly under attack.”
According to Bleeping Computer, the attack was carried out by the hacker group REvil, which announced on its data filtering site that it had breached Acer. As evidence, the group shared images of the alleged files they had stolen, which include financial spreadsheets, bank balances and bank communications. JoTruly, this would be the biggest rescue attempt always demanded. In 2020, the highest rescue attempt meet up era $ 30 million, Reported ZDNet.
REvil is the same group linked to Travelex attack in 2020. According to reports at the time, the group had demanded a $ 6 million ransom. In the end, the company allegedly paid the REvil group about $ 2.3 million bitcoin value.
Gizmodo contacted Acer to confirm the report and ask for feedback. The company did not acknowledge whether it had been the victim of an attack. He acknowledged that he had reported recent “abnormal situations” to authorities.
“Acer regularly monitors its computer systems and most cyberattacks are well defended. Companies like us are constantly under attack and we have reported recent abnormal situations observed in the competent authorities in matters of police and data protection in several countries, “said Acer. “We have been continuously improving our cybersecurity infrastructure to protect business continuity and our information integrity.”
G / O Media may receive a commission
Acer added that it urged companies and organizations to follow best cybersecurity practices and “be alert to any anomalies in network activity.”
Bleeping Computer reported that, as well as the French outlet LeMagIT, discovered the REvil ransomware sample used in the Steel attack. The media also analyzed the rescue note and conversation with hackers, which according to Bleeping Computer confirms that the attack was against Acer. Hackers have it as supposed gave Acer until March 28 to pay the ransom.
Some experts said at the outset that the breach could be related to a Microsoft Exchange server in Acer’s domain, to which REvil hackers recently pointed. It is unclear whether hackers exploited the file Microsoft Exchange Security Vulnerabilities revealed earlier this month, which, according to initial estimates, have been committed by some 30,000 American organizations.
However, the number of entities involved worldwide could be much higher, with some reports indicating that there are at least 60,000 known victims all over the world.