The California Office of the Attorney General reported that Acer Service Corporation experienced a data breach affecting customer information on May 12, 2015, with the notification reported on June 14, 2016. The breach involved unauthorized access potentially exposing names, addresses, card numbers, expiration dates, and security codes, but Social Security numbers were not collected. Immediate corrective actions were taken, including engaging cybersecurity experts and cooperating with federal law enforcement.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-62344
TPRM report: https://scoringcyber.rankiteo.com/company/acer
"id": "ace517072825",
"linkid": "acer",
"type": "Breach",
"date": "5/2015",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Technology',
'name': 'Acer Service Corporation',
'type': 'Corporation'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['names',
'addresses',
'card numbers',
'expiration dates',
'security codes']},
'date_detected': '2015-05-12',
'date_publicly_disclosed': '2016-06-14',
'description': 'Unauthorized access to customer information including names, '
'addresses, card numbers, expiration dates, and security '
'codes.',
'impact': {'data_compromised': ['names',
'addresses',
'card numbers',
'expiration dates',
'security codes'],
'payment_information_risk': True},
'references': [{'source': 'California Office of the Attorney General'}],
'response': {'incident_response_plan_activated': True,
'law_enforcement_notified': True,
'third_party_assistance': 'Cybersecurity experts'},
'title': 'Acer Service Corporation Data Breach',
'type': 'Data Breach'}