A group of hackers is demanding $ 50 million from Acer, Biping Computer reported, in what appears to be one of the biggest demands for ransomware to date. According Biping Computer, attackers may have gained access to the network from the Taiwanese computer manufacturer through a Microsoft Exchange vulnerability. The REvil group that carried out a ransomware attack on Travelex last year is also believed to be behind the Acer breach.
Biping Computer said REvil is giving Acer until March 28 to pay the ransom or it will leak the data it claims to have collected. Microsoft recently released several security updates to fix exploitation vulnerabilities found in its Exchange software, but it was not immediately clear whether the Acer breach was connected.
Acer did not immediately respond to a request for comment from The Verge on Saturday but said Biping Computer in a statement that “Companies like us are constantly under attack and we report recent abnormal situations observed to law enforcement and data protection authorities in several countries”.
Acer did not acknowledge in its statement whether it was the victim of a ransomware attack, but added that there was an “ongoing investigation” that prevented the company from making further comments due to security concerns.