Security News > 2023 > March > Acronis downplays intrusion after 12GB trove leaks online

The CISO of Swiss cybersecurity firm Acronis has acknowledged a breach of the company's systems but stated the incident only impacted a single customer and that all other data remains safe.

A Thursday post [PDF] to the notorious Breached Forums leak-mart brought news of the breach.

In that post an attacker named kernelware - who also cracked Acer - claimed he/she had hacked and leaked certificate files, command logs, system configurations, system information logs, archives of their filesystem, python scrips for an Acronis database, backup configuration and oodles of screenshots of backup operations.

Acronis CISO Kevin Reed took to LinkedIn to dispute details of the hack.

Acronis has both tweeted and told The Register that no Acronis product were affected.

"On March 9, a post on BreachedForums mentioned Acronis. We immediately started the investigation. The investigation confirmed that no Acronis products were affected. However, based on the information we have, the credentials used by a specific customer to upload diagnostic data to Acronis Support have been compromised. We are working with that customer and have suspended account access as we resolve the issue," Acronis told The Reg via email.

News URL

https://go.theregister.com/feed/www.theregister.com/2023/03/10/acronis_data_breach/