Connect with us

Press Release

Ransomware assault costs $50 million on computer giant Acer

Published

on

Ransomware assault costs $50 million on computer giant Acer

Revil ransomware has attacked computer company Acer, and the threat actors are requesting the $50,000,000,000 ransom, which is the highest known ransom to date.

Acer is a well-known Taiwanese manufacturer of computers, electronics, and monitors. About 7,000 people work for Acer, which had revenue of $7.8 billion in 2019.

The ransomware gang said yesterday that they have infiltrated Acer and posted some screenshots of purportedly stolen files as evidence on their data leak website.

These documents, which contain financial spreadsheets, bank balances, and bank correspondence, were exposed through the use of leaked photos.

In response to BleepingComputer’s queries, Acer said that they “reported recent odd situations” to pertinent LEAs and DPAs but did not give a clear statement as to whether they had been the victim of a REvil ransomware assault.

Below is a link to their full response:

“Acer regularly checks its IT infrastructure, and the majority of hacks are successfully thwarted. Companies like ours are frequently targeted, and we have recently witnessed strange circumstances that we have notified to the appropriate law enforcement and data protection agencies in several different countries.”

“To ensure company continuity and information integrity, we have been steadily improving our cybersecurity infrastructure. We strongly advise all businesses and organisations to follow cyber security best practises and guidelines and to keep an eye out for any unusual network behaviour.” – Acer.

Acer responded to queries for additional information by saying “there is an ongoing investigation and for the sake of security, we are unable to comment on details.”

Known highest ransom demand
Following the release of our article, LegMagIT’s Valery Marchive found the REvil ransomware sample that was utilised in the Acer assault and demanded a huge $50 million ransom.

Soon after, BleepingComputer discovered the sample and is able to corroborate that it is from the onslaught on Acer based on the ransom message and the victim’s chat with the attackers.

Beginning on March 14th, the victim began speaking with REvil, who displayed disbelief at the victim’s enormous $50 million demand.

The REvil representative offered a link to the Acer data leak page later on in the chat, which was still under wraps at the moment.

A 20% discount was also provided by the assailants if payment was completed by this past Wednesday. The ransomware group would deliver a decryptor, a vulnerability report, and the destruction of the files they had stolen in exchange.

The REvil operation once issued a mysterious warning to Acer, telling them “not not repeat the fate of the SolarWind.”

The previous greatest known ransom was the $30 million extortion from the Dairy Farm cyberattack, which was also perpetrated by REvil. REvil’s 50 million demand is the largest known ransom to date.

Possibly exploited Microsoft Exchange
According to Vitali Kremez of BleepingComputer, the Revil gang recently targeted a Microsoft Exchange server on the Acer domain, which Advanced Intel’s Andariel cyberintelligence technology was able to identify.

Kremez told BleepingComputer that “Advanced Intel’s Andariel cyberintelligence technology noticed that one specific REvil affiliate pursued Microsoft Exchange weaponization.”

Although they are a smaller operation with fewer victims, the threat actors behind the DearCry ransomware have already deployed their ransomware via the ProxyLogon vulnerability.

If the current Microsoft Exchange flaws were utilised by REvil to steal data or encrypt devices, it would mark the first time one of the ransomware operations that targets large-scale threats used this kind of attack.

Continue Reading

Press Release

MICROSOFT IS IN TERMS TO BUY SPEECH TECHNOLOGY COMPANY NUANCE COMMUNICATIONS FOR ABOUT $16 BILLION, OR $56 A SHARE, A 23% OVERPAYMENT TO NUANCE’S FRIDAY CLOSE, According to Sources (BLOOMBERG)

Published

on

MICROSOFT IS IN TERMS TO BUY SPEECH TECHNOLOGY COMPANY

Bloomberg:

According to sources, Microsoft is in advanced talks to acquire Nuance Communications, a provider of speech technology, for about $16 billion, or $56 per share, a 23% premium to Nuance’s Friday close. The proposed price would value Nuance at $56 per share. This week could see the announcement of a deal.

Continue Reading

Press Release

Nine widely used WiFi routers had 226 vulnerabilities.

Published

on

Nine widely used WiFi routers had 226 vulnerabilities.

Even when using the most recent firmware, security researchers examined nine widely used WiFi routers and discovered a total of 226 possible vulnerabilities in them.

Millions of people use the tested routers, which are made by Asus, AVM, D-Link, Netgear, Edimax, TP-Link, Synology, and Linksys.

The TP-Link Archer AX6000, which has 32 problems, and the Synology RT-2600ac, which has 30 security flaws, are the two devices with the most vulnerabilities.

The examination process
In partnership with CHIP magazine, researchers at IoT Inspector conducted security tests with a focus on models primarily used by small businesses and residential users.

According to Florian Lukavsky, CTO & Founder at IoT Inspector, “vendors provided them with current models, which were upgraded to the newest firmware version, for Chip’s router review.”

“IoT Inspector automatically examined the firmware versions and searched for more than 5,000 CVEs and other security flaws.”

Although not all defects posed the same risk, the researchers discovered a few widespread issues that impacted the majority of the evaluated models:

The firmware contains an outdated Linux kernel.
stale VPN and multimedia features
over-reliance on BusyBox’s earlier iterations
weak default passwords like “admin” are used
Hardcoded credentials are present in plain text.
Changing the router’s default password when configuring it for the first time is one of the most crucial steps you can take to secure it, according to Jan Wendenburg, CEO of IoT Inspector.

Whether an IoT device is used at home or in a corporate network, changing the password upon first use and turning on automatic updates must be regular procedure, according to Wendenburg.

In addition to manufacturer-introduced vulnerabilities, utilising an IoT device with the adage “plug, play, and forget” poses the greatest risk.

Continue Reading

Press Release

MASSACHUSETTS COURT SUPPORTS A REQUEST FROM THE IRS TO OBTAIN THE RECORDS OF ALL CIRCLE CUSTOMERS WHO HAD $20K+ IN CRYPTO TRANSACTIONS BETWEEN 2016 AND 2020 (ZACK SEWARD/COINDESK)

Published

on

MASSACHUSETTS COURT

Massachusetts court supports a request from the IRS to obtain the records of all Circle customers who had $20K+ in crypto transactions between 2016 and 2020  —  A Massachusetts court is supporting a request from the IRS to obtain the records Circle customers, the Department of Justice said.

Continue Reading

Trending