Acer Inadvertently Releases 40,000 Customer Details

  • 0 Replies

Offline Bugbatter

  • Microsoft® MVP
  • Administrator
  • Diamond Member
  • 10660
Acer Inadvertently Releases 40,000 Customer Details
« on: June 06, 2011, 05:55:49 PM »

According to a report from The Hacker News, the personal data of approximately 40,000 Acer customers were made available online via the company's FTP server. The 13 MB ZIP archive contained an Excel spreadsheet with the various customer details, including first and last names, country of residence and email addresses, as well as product model and serial numbers owned by these customers.

The attack was reportedly carried out by the "Pakistan Cyber Army" (PCA), a known hacking group, which told the online news site that it intends to publish the data online. In addition to the stolen customer data, source code was also said to have been obtained by the group and will be made available at a later date. In a follow up post, The Hacker News notes that it found valid FTP credentials for the company's servers in the Acer ASP support forums dating back to January 2008. A quick search by The H Security shows that the FTP credentials are still available online.

Continued here:

Microsoft MVP Consumer Security 2006-2016
Microsoft Windows Insider MVP 2016-