The CISO of Acronis has downplayed what seemed to be an intrusion into its techniques, insisting just one buyer was affected, utilizing stolen credentials, and that each one different knowledge stays secure.
A Thursday thread [PDF] on the infamous Breached Boards leak-mart introduced information of the theft. In that put up an attacker named kernelware – who additionally cracked Acer – claimed they’d damaged into Acronis, and stolen then leaked certificates recordsdata, command logs, system configurations, system data logs, archives of their filesystem, python scrips for an Acronis database, and backup configuration, plus oodles of screenshots of backup operations.
Kernelware acknowledged though the $120 million firm is within the knowledge safety and infosec enterprise, it had “dogshit safety,” and that the hacker was bored, so determined to “humiliate” the biz. The archive shared by Kernelware held a complete of 12.2GB of stolen recordsdata.
Acronis safety boss Kevin Reed took to LinkedIn to dispute particulars of the boasted intrusion.
Acronis has each tweeted and advised The Register that no Acronis merchandise have been affected or exploited. As a substitute, somebody obtained maintain of an Acronis buyer’s account login data and used that to siphon off their recordsdata, we’re advised.
“On March 9, a put up on BreachedForums talked about Acronis. We instantly began the investigation,” a spokesperson for Acronis advised The Reg by way of electronic mail.
“The investigation confirmed that no Acronis merchandise have been affected. Nevertheless, primarily based on the data we have now, the credentials utilized by a selected buyer to add diagnostic knowledge to Acronis Help have been compromised. We’re working with that buyer and have suspended account entry as we resolve the difficulty.
“We proceed to analyze and can present updates if any new data is found,” the spinner added. ®
