cyber daily logo

Breaking news and updates daily. Subscribe to our Newsletter

Breaking news and updates daily. Subscribe to our Newsletter X facebook linkedin Instagram Instagram

Acer employee data stolen in third-party cyber attack

Threat actors have leaked the data of Acer employees online after exfiltrating it during an attack on a third-party provider, the company confirms.

user icon Daniel Croft
Wed, 13 Mar 2024
Acer employee data stolen in third-party cyber attack
expand image

The Philippine subsidiary of Taiwanese PC and laptop builder Acer confirmed that employee data was compromised after a threat actor going by the name “ph1ns” made a post on a hacking forum with a link to download a database of stolen Acer Philippines employee data.

“Acer Philippines was recently breached as part of #opEDSA, the following is a data sample from the databases,” said ph1ns.

The threat actor added that the data was not for sale and told tech publication BleepingComputer that no encryption or ransomware methods were involved. It also said it had no plans to extort the company.


“Sorry, I’m not selling the data, though might sell the access if it interests anyone, can give out more details about how it was breached and what kind of access it is in private,” the threat actor said.

BleepingComputer was reportedly provided evidence that the threat actor had wiped the breached servers before losing access.

While Acer has not disclosed the specifics regarding what data was stolen, it has since released an official statement regarding the breach.

“We want to assure everyone that our security checks confirm that there has been no breach or leak of any Acer Philippines customer database, and customer data remains unaffected by this incident,” said Acer Philippines on X (formerly Twitter).

It also reiterated that this was an attack on a third-party vendor responsible for managing employee attendance data.

“It’s crucial for us to assure you that the integrity of the Acer Philippines customer database remains intact – there has been absolutely no breach or compromise of customer data,” Acer said in a response to its X post.

“Our internal systems, protecting customer databases, remain secure and unbreached.”

Acer has been hacked a number of times in the past, most notably in March 2021 when the REvil ransomware group hit the computer company and demanded a record-breaking $50 million in ransom payments.

Following this, Acer revealed its after-sales service, which is based in India, was hit, resulting in millions of records of customer data being exfiltrated.

Most recently, a company server was hit in 2023, leading to technical documents, digital product keys, software tools and more being stolen.

Daniel Croft

Daniel Croft

Born in the heart of Western Sydney, Daniel Croft is a passionate journalist with an understanding for and experience writing in the technology space. Having studied at Macquarie University, he joined Momentum Media in 2022, writing across a number of publications including Australian Aviation, Cyber Security Connect and Defence Connect. Outside of writing, Daniel has a keen interest in music, and spends his time playing in bands around Sydney.

cd intro podcast

Introducing Cyber Daily, the new name for Cyber Security Connect

Click here to learn all about it
cyber daily subscribe
Be the first to hear the latest developments in the cyber industry.