Skip to main content
  1. Home
  2. Computing
  3. News

Acer hit with $115K in penalties after the theft of 35,000 users' personal information

Add as a preferred source on Google

In June 2016, Acer announced that a security breach pertaining to its online storefront serving North America had resulted in thousands of users’ personal data being compromised. Now, the New York attorney general’s office has confirmed that the company will pay $115,000 in penalties, following an in-depth investigation into the error.

It’s been discovered that an Acer employee enabled debugging mode on the company’s ecommerce platform between July 2015 and April 2016, according to a report from Engadget. This setting caused all personal data provided by customers via web forms to be saved to an unencrypted, plain-text log file.

Recommended Videos

The information offered up included full names, credit card numbers, expiration dates, verification numbers, user names and passwords for the site, email addresses, and full street addresses including ZIP codes. Customers would obviously need to submit this data to carry out a transaction on the website, but it’s easy to imagine how malicious entities could use it to commit acts of fraud.

Furthermore, there’s confirmation that the Acer website was misconfigured such that unauthorized users could browse its directory. Attackers could access subdirectories from a web browser, according to a release published by the attorney general’s office.

The investigation has found that 35,000 users based in the United States, Canada, and Puerto Rico had their information stolen as a result of the breach. At least one hacking group has been confirmed to have exploited the site’s vulnerabilities to obtain this data between November 2015 and April 2016.

As well as the $115,000 settlement, Acer will be required to enforce several new security policies intended to ensure that these mistakes aren’t repeated. The company will have to deliver yearly employee training about data security and customer privacy, and designate a specific employee to be notified whenever customer data is stored without encryption, among a list of other stipulations.

Brad Jones
Brad is an English-born writer currently splitting his time between Edinburgh and Pennsylvania. You can find him on Twitter…
Brave’s new Container feature is a lifesaver for anyone juggling multiple accounts
With this feature, you won't need to open three different browsers
Brave browser 3D logo

Brave has added Containers to its desktop browser, giving users a built-in way to keep different accounts, sessions, and browsing activity separate. The feature is available in Brave 1.92 for Windows, macOS, and Linux, and is rolling out in phases over the next few days.

Containers have been a highly requested feature, especially for users who regularly switch between work, personal, developer, or creator accounts. Once enabled, they let users open tabs in separate spaces where cookies and site storage are not shared outside that container.

Read more
Intel may bring back older desktop CPUs because DDR5 is getting too expensive
Older Intel Core CPUs from 10th to 14th Gen may get a second life
Intel Core i5-12400F box sitting in front of a gaming PC.

Intel may be preparing an unusual response to the ongoing memory crunch. According to Chinese outlet ITHome, citing ChannelGate, the company’s latest production plan includes restarting production of 13th-gen and 14th-gen Core processors.

The move is expected to increase supply across Intel’s 10th, 12th, 13th, and 14th Gen CPU families, especially in mainland China. For DIY PC builders, the timing is important. DDR5 memory prices have climbed sharply, making newer platforms harder to justify for anyone trying to build an affordable gaming PC.

Read more
Amazon wants to design in-house chips for Kindles, Fire TV, and Echo speakers
Apple did it first. Amazon is doing it now, starting with 40 million chips a year and a partner most people have never heard of.
Amazon Kindle Scribe dark mode featured image.

Apple's decision to design its own chips reshaped the consumer electronics industry. Amazon may be about to make the same call, just about two decades later.

Supply chain analyst Ming-Chi Kuo reports that Amazon is preparing to shift away from externally sourced processors for its consumer electronics lineup, marking what he describes as the company's first major processor procurement change in 20 years. The transition is expected to begin in 2027.

Read more