cyber Breach

Acronis

Oct 8, 2023 1 min read
Acronis

Acronis minimizes the impact of the most recent security breach by saying that only one customer's account was affected.

Several certificate files, command logs, system configurations, system information logs, filesystem archives, and python scripts for the company's maria.db database, backup configuration information, screenshots of backup operations, and more are all included in the Acronis breach.

Their preliminary research indicates that the login information used by one particular customer to provide diagnostic data to Acronis support has been compromised.

The business also stated that it is unaware of any vulnerabilities impacting its systems and that neither its products nor the security breach harmed them.

Source: https://securityaffairs.com/143380/hacking/acronis-downplays-security-incident.html

TPRM report: https://scoringcyber.rankiteo.com/company/acronis

"id": "acr175681023",
"linkid": "acronis",
"type": "Breach",
"date": "03/2023",
"severity": "25",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'customers_affected': ['One customer'],
                        'industry': 'Technology',
                        'name': 'Acronis',
                        'type': 'Company'}],
 'attack_vector': 'Compromised Credentials',
 'data_breach': {'data_exfiltration': True,
                 'file_types_exposed': ['Certificate files',
                                        'Command logs',
                                        'System configurations',
                                        'System information logs',
                                        'Filesystem archives',
                                        'Python scripts',
                                        'Backup configuration information',
                                        'Screenshots'],
                 'type_of_data_compromised': ['Certificate files',
                                              'Command logs',
                                              'System configurations',
                                              'System information logs',
                                              'Filesystem archives',
                                              'Python scripts for maria.db '
                                              'database',
                                              'Backup configuration '
                                              'information',
                                              'Screenshots of backup '
                                              'operations']},
 'description': "Acronis faced a security breach where one customer's account "
                'was compromised. Various sensitive files, logs, and backup '
                'information were exposed. The company has stated that no '
                'vulnerabilities were found in its systems and that neither '
                'its products nor the security breach harmed them.',
 'impact': {'data_compromised': ['Certificate files',
                                 'Command logs',
                                 'System configurations',
                                 'System information logs',
                                 'Filesystem archives',
                                 'Python scripts for maria.db database',
                                 'Backup configuration information',
                                 'Screenshots of backup operations']},
 'initial_access_broker': {'entry_point': 'Compromised Login Credentials'},
 'title': 'Acronis Security Breach',
 'type': 'Data Breach'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.