Acronis minimizes the impact of the most recent security breach by saying that only one customer's account was affected.
Several certificate files, command logs, system configurations, system information logs, filesystem archives, and python scripts for the company's maria.db database, backup configuration information, screenshots of backup operations, and more are all included in the Acronis breach.
Their preliminary research indicates that the login information used by one particular customer to provide diagnostic data to Acronis support has been compromised.
The business also stated that it is unaware of any vulnerabilities impacting its systems and that neither its products nor the security breach harmed them.
Source: https://securityaffairs.com/143380/hacking/acronis-downplays-security-incident.html
TPRM report: https://scoringcyber.rankiteo.com/company/acronis
"id": "acr175681023",
"linkid": "acronis",
"type": "Breach",
"date": "03/2023",
"severity": "25",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'customers_affected': ['One customer'],
'industry': 'Technology',
'name': 'Acronis',
'type': 'Company'}],
'attack_vector': 'Compromised Credentials',
'data_breach': {'data_exfiltration': True,
'file_types_exposed': ['Certificate files',
'Command logs',
'System configurations',
'System information logs',
'Filesystem archives',
'Python scripts',
'Backup configuration information',
'Screenshots'],
'type_of_data_compromised': ['Certificate files',
'Command logs',
'System configurations',
'System information logs',
'Filesystem archives',
'Python scripts for maria.db '
'database',
'Backup configuration '
'information',
'Screenshots of backup '
'operations']},
'description': "Acronis faced a security breach where one customer's account "
'was compromised. Various sensitive files, logs, and backup '
'information were exposed. The company has stated that no '
'vulnerabilities were found in its systems and that neither '
'its products nor the security breach harmed them.',
'impact': {'data_compromised': ['Certificate files',
'Command logs',
'System configurations',
'System information logs',
'Filesystem archives',
'Python scripts for maria.db database',
'Backup configuration information',
'Screenshots of backup operations']},
'initial_access_broker': {'entry_point': 'Compromised Login Credentials'},
'title': 'Acronis Security Breach',
'type': 'Data Breach'}