Acer has become the latest victim of the notorious ransomware gang REvil, which has demanded a record $50 million (£36 million) from the Taiwanese PC manufacturer.
REvil previously targeted foreign exchange company Travelex and entertainment and media law firm Grubman Shire Meiselas and Sacks, clients of which include Bruce Springsteen, Madonna, Elton John, and the David Bowie Estate.
However, the attack on Acer reportedly marks the gang's highest ransom demand yet, with REvil requesting $50 million (£36 million). The group has allegedly given Acer until March 28 for the company to send over funds before any stolen data is leaked.
The group is well-known for turning extortion into a lucrative business opportunity, having made more than $100 million in 2020 as well as indicating plans to raise the amount to $2 billion over the course of 2021.
REvil announced the Acer breach on their website where it presented images of allegedly stolen files, including financial spreadsheets, bank balances, and bank communications, as proof, according to Bleeping Computer, which reports that REvil offered Acer a 20% discount if the money was transferred as of before 17 March.
The company, which specialises in manufacturing laptops, desktops, and monitors, told the publication that it is “constantly under attack” and has “reported recent abnormal situations observed to the relevant law enforcement and data protection authorities in multiple countries”.
When pressed for more details to the vague statement, Acer replied that an investigation is “ongoing”
“For the sake of security, we are unable to comment on details,” the company told Bleeping Computer, without providing any information on whether it had paid the ransom. IT Pro has contacted Acer and its representatives for further comment but has yet to receive a response.
The breach is believed to be linked to the Microsoft Exchange cyber attack from earlier this month, which was orchestrated by at 'at least ten hacker groups' and affected ‘hundreds of thousands’ of victims, including in the UK. Ethical hacker Vitali Kremez told Bleeping Computer that the Revil gang had recently targeted a Microsoft Exchange server on Acer's domain.
"Advanced Intel's Andariel cyberintelligence system detected that one particular REvil affiliate pursued Microsoft Exchange weaponization," he added.
-
What businesses need to know about data sovereigntyWithout a firm strategy for data sovereignty, businesses put their data and reputations at risk
-
Anthropic says MCP will stay 'open, neutral, and community-driven' after donating project to Linux FoundationNews The AAIF aims to standardize agentic AI development and create an open ecosystem for developers
-
15-year-old revealed as key player in Scattered LAPSUS$ HuntersNews 'Rey' says he's trying to leave Scattered LAPSUS$ Hunters and is prepared to cooperate with law enforcement
-
The Scattered Lapsus$ Hunters group is targeting Zendesk customers – here’s what you need to knowNews The group appears to be infecting support and help-desk personnel with remote access trojans and other forms of malware
-
Impact of Asahi cyber attack laid bare as company confirms 1.5 million customers exposedNews No ransom has been paid, said president and group CEO Atsushi Katsuki, and the company is restoring its systems
-
The US, UK, and Australia just imposed sanctions on a Russian cyber crime group – 'we are exposing their dark networks and going after those responsible'News Media Land offers 'bulletproof' hosting services used for ransomware and DDoS attacks around the world
-
A notorious ransomware group is spreading fake Microsoft Teams ads to snare victimsNews The Rhysida ransomware group is leveraging Trusted Signing from Microsoft to lend plausibility to its activities
-
Volkswagen confirms security ‘incident’ amid ransomware breach claimsNews Volkswagen has confirmed a security "incident" has occurred, but insists no IT systems have been compromised.
-
The number of ransomware groups rockets as new, smaller players emergeNews The good news is that the number of victims remains steady
-
Teens arrested over nursery chain Kido hacknews The ransom attack caused widespread shock when the hackers published children's personal data
