Swiss cybersecurity firm Acronis breached, claims hacker

A Swiss cybersecurity firm that employs more than 2,000 workers has been hacked, according to a dark-web claim shared on social media by a threat watcher. Acronis has confirmed that customer credentials were compromised but insists that none of its products have been affected.

FalconFeedsio used Twitter to post the claims by an unspecified hacker that they had breached Acronis and leaked data stolen from the digital security company on a dark-web forum.

According to Falcon’s tweet, the data includes certificate files, command logs, system configurations, and file system archives. The threat watcher shared the original dark-web post from the hacker claiming responsibility, in which they name the alleged victim.

“Today I’m leaking details of a cybersecurity company called Acronis,” said the hacker, adding a smily emoji for emphasis.

“User in the hacker's forum claims to have leaked data from a Switzerland cybersecurity company,” tweeted Falcon. “The leaked data includes various certificate files, command logs, system configurations, system information logs, archives of their file system, Python scripts for their maria.db database, backup configuration stuff, and loads of screenshots of their backup operations.”

“For transparency, the specific credentials used by only one customer to upload diagnostic data to an Acronis file server was compromised, no Acronis products have been affected. Our customer service team is currently working with this customer. Updates to follow as needed,” Acronis told Cybernews in a tweet.

Shortly after sharing the revelation about Acronis, Falcon posted again to say that a pro-Russian threat actor claimed to have breached the Ministry of Foreign Affairs in Latvia - a staunch NATO ally opposed to the invasion of Ukraine.

“NoName hackers group claims to have targeted and attacked portal of the Ministry of Foreign Affairs of Latvia,” said Falcon.

NoName hacking group is believed to have emerged last year shortly after Russia’s invasion of Ukraine in February, and is thought to be going after government, media, and other targets in the latter country as well as the US and European nations.

More from Cybernews:

LockBit adds Audio-Technica to victim list

TikTok suffers an outage

US cyber general warns Russia is not to be underestimated

ChatGPT Chrome extension pilfers Facebook accounts

Canadian engineering giant with military ties hit by ransomware

Subscribe to our newsletter

Leave a Reply

Your email address will not be published. Required fields are markedmarked