Over 60GB of Acer’s client, customer, and retailers’ information is being advertised for sale on an underground cybercrime forum.
A spokesman for Taiwanese computer manufacturer Acer has confirmed that it has suffered a second security breach this year.
Hackers have reportedly stolen 60GB data containing customer details and login information for Indian retailers and distributors, and shared on RAID - a popular underground forum used by threat actors over the past years to extort companies and sell stolen data.
The threat actors, who call themselves Desorden, shared a sample of the stolen data, along with a video of the rest of the files.
“We have recently detected an isolated attack on our local after-sales service system in India,” said Steven Chung, Acer Corporate Communications in a statement to the media.
“Upon detection, we immediately initiated our security protocols and conducted a full scan of our systems. We are notifying all potentially affected customers in India.”
Earlier this year, the company suffered a ransomware extortion attempt of $50m after falling prey to the REvil ransomware group.