Accenture Confirms Security Incident After Hacker Claims Data Haul | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker


Accenture has confirmed an isolated data breach after reports that a hacker called “888” claimed to be selling 35 GB of source code and credentials, but said it remediated the source with no operational or service-delivery impact.


Global IT services provider Accenture confirmed that it suffered a data breach, but declined to provide details other than to say it is not impacted by the breach.

Several cybersecurity sites, including BleepingComputer, Cyber Security News, and SOCRadar, said that a threat actor with the alias “888” on July 6 posted on a cybercrime forum that it stole about 35 GBs of source code and related credentials from Accenture, and wanted to sell that data.

Several media outlets also reported the threat actor also tried in 2024 to sell Accenture employee data following a third-party breach.

In a screenshot shared with several security-focused organizations, the “888” attacker showed itself cloning an Azure DevOps repository, and said that the 35 GB of data it was looking to sell included source code, RSA and SSH keys, Azure PAT (Personal Access Token), Azure storage access keys, and configuration files, and even included a free sample of the data.

Accenture, a global IT services powerhouse ranked No. 1 on CRN’s 2026 Solution Provider 500, declined to provide details about the breach and its response, including information about the amount of data stolen, how current the data was, whether it was customer or internal data, how it was accessed, and what the company is doing in response.

[Related: Accenture Aims For OT Security Push With Dragos Deal: 5 Things To Know]

However, in a statement emailed to CRN and attributed to an Accenture spokesperson, the company wrote, “We are aware of this isolated matter and we have remediated its source. There is no impact to Accenture operations and service delivery.”

This is not the first breach or attempted breach of Accenture. Several cybersecurity sites, including Bleeping Computer, Cyber Security News, and SOCRadar, said that a threat actor with the alias “888” on July 6 posted on a cybercrime forum that it stole about 35 GBs of source code and related credentials from Accenture, and wanted to sell that data.



Click Here For The Original Source.

——————————————————–

..........

.

.

National Cyber Security

FREE
VIEW