Accenture confirmed a data breach where 35 GB of data was stolen and is being offered for sale by a hacker. The breach includes sensitive information such as source code and access keys, raising concerns about cybersecurity vulnerabilities within major firms.
Accenture confirmed it experienced a security breach where a hacker claimed to have stolen 35 GB of data. The company reported that it has remediated the issue, asserting that there is no impact on its operations or services.
The threat actor, known as '888', is reportedly selling the stolen data on a cybercrime forum. The data includes not only source code but also important security credentials such as RSA keys, SSH keys, Azure personal access tokens, and various configuration files.
This breach is not isolated as Accenture previously faced a data breach in 2021, linked to the LockBit ransomware group. Additionally, the same hacker attempted to sell Accenture's employee data following a third-party breach in 2024, highlighting ongoing security challenges for the firm.
While Accenture has acknowledged the breach, they have not disclosed specific details about how the attackers gained access or if customer data was affected. This lack of transparency raises questions about the security measures in place at the firm.
The incident illustrates significant vulnerabilities in the cybersecurity defenses of even major companies like Accenture. As the landscape of cyber threats evolves, firms may need to reassess their security protocols to mitigate risks associated with such breaches.
β¨ This summary was generated by AI from the outlets' reporting listed below. It is not independently verified and may contain errors β check the original sources. How BrevFeed works β
Accenture confirmed a data breach where 35 GB of data was stolen and is being offered for sale by a hacker. The breach includes sensitive information such as source code and access keys, raising concerns about cybersecurity vulnerabilities within major firms.