fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Acer Hacked Twice In A Week By The Same Threat Actor

Acer Hacked Twice In A Week By The Same Threat Actor

Acer has suffered a second cyberattack in just a week by the same hacking group that says other regions are vulnerable.

Last week, threat actors known as ‘Desorden’ emailed journalists to say they hacked Acer India’s servers and stole data, including customer information.

Acer later confirmed the breach but stated it was an “isolated attack,” affecting only their after-sales service systems in India.

Also Read: What a Vulnerability Assessment Shows and How It Can Save You Money

Less than a week later, Desorden emailed BleepingComputer to say they breached Acer Taiwan’s servers on October 15th and stole employee and product information.

They also shared images of an internal Acer Taiwan portal and CSV files containing login credentials for Acer employees.

The threat actors told BleepingComputer that they performed the attack to prove that Acer is still vulnerable.

“We did not asked for separate payment on the taiwan breach. it was meant to prove our point that Acer has neglected their cybersecurity.” – Desorden.

Acer Taiwan took down the vulnerable server soon after the threat actors reported the breach to the company. However, the hacking group states that other servers in Malaysia and Indonesia are still vulnerable.

Yesterday, Acer confirmed the attack in a statement to BleepingComputer and said the Taiwan breach only involved employee data.

“We have recently detected an isolated attack on our local after-sales service system in India and a further attack in Taiwan. Upon detection, we immediately initiated our security protocols and conducted a full scan of our systems. We are notifying all potentially affected customers in India, while the attacked Taiwan system does not involve customer data. The incident has been reported to local law enforcement and relevant authorities, and has no material impact to our operations and business continuity.” – Acer.

In addition to these two breaches, Acer suffered another cyberattack in March 2021 after the REvil ransomware gang encrypted their network and demanded a $50 million ransom.

Also Read: What You Need to Know About Singapore’s Data Sharing Arrangements

Desorden has a prior history of performing corporate breaches and leaking data if a ransom is not paid.

In September 2021, Desordern claimed to have breached ABX Express, a subsidiary of Kerry Logistics, and stolen 200 GB of data, including customers’ personal information.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us