They clearly didn't rub enough 2FA onto their For Security Reasons.
The CISO of Acronis has downplayed what appeared to be an intrusion into its systems, insisting only one customer was affected, using stolen credentials, and that all other data remains safe. A Thursday thread [PDF] on the notorious Breached Forums leak-mart brought news of the theft. In that post an attacker named kernelware …
Friday 10th March 2023 09:10 GMT steviebuk
Doesn't surprise me
I used to use their backup software way back in 2010. Did a video on an issue with the schedule that they never fixed in all the versions I used. Where when setting it up you'd put in the credentials for you network NAS, it would say they are fine and you browse just fine. Then the job runs and fails due to credentials being wrong, which they weren't.
Friday 10th March 2023 10:42 GMT Pinero50
Spinning up a storm..
If nothing else comes to light.. it looks to me like the customer is the only one at fault here, they have somehow lost control of the support account credentials for their Acronis backups and this 'hacker' has just logged in and downloaded the data on the account then claimed that he has 'cracked' Acronis, judging from his/her comments they sound about 15..
Pretty much a non-story in my opinion, but spun beautifully by El Reg into 'Acronis admits to data leak as 12GB trove appears online!' apart from the tabloid headline the article itself was pretty well balanced, but if I was Acronis I wouldn't be happy with your initial characterisation of the incident.