Acer Philippines is currently investigation a security incident that occurred in its third-party vendor system responsible for managing the company's employee attendance data.
This has resulted in unauthorised access to a database containing specific employee information.
A threat actor identifying as 'ph1ns' had published a link to download the allegedly stolen database containing Acer employee data for free on a hacking forum, according to a report by Bleeping Computer.
The attacker had said no ransomware or encryption was involved and it was only a pure data theft.
However, Acer Philippines said that there has been no breach or leak of any of its customer databases as the attendance system was 'entirely' distinct from it with robust internal systems in place to protect from cybersecurity threats.
"We are dedicated to upholding the most rigorous levels of data protection for all information entrusted to our care," Acer said.
The company has alerted the National Privacy Commission (NPC) and the Cybercrime Investigation and Coordinating Centre (CICC) on the incident.
It recommends individuals with concerns to contact Acer Philippines through their official support channels.
Acer has faced multiple security incidents earlier, notably the attack in February 2023 on its server holding technical manuals, software tools, BIOS images, and replacement digital product keys (RDPK).
