Accenture Exposes Over 35 GB of Confidential Data Including Source Code and Keys
A threat actor posted on a cybercrime forum that they are selling more than 35 GB of Accenture's confidential data—source code, RSA and SSH keys, Azure tokens and storage keys—prompting Accenture to confirm the breach while security experts warn the leaked assets could fuel future attacks.
A threat actor on an underground forum announced the sale of over 35 GB of Accenture's confidential data, citing source code, RSA keys, SSH keys, Azure personal access tokens (PAT), and Azure Storage access keys.
Accenture acknowledged the isolated incident, stating the source was eliminated and that the breach has not affected its operations or service delivery, but offered no further details on the data scope or client impact.
The actor, identified as “888,” claimed the theft occurred in July and posted a screenshot showing the cloning of an Azure DevOps repository named “121123_AtriasTalentAcademy” hosted on an accenture.com domain.
Ross Filipek, CISO of Corsica Technologies, warned that the stolen artifacts could become a “playbook” for future attacks, allowing adversaries to exploit code vulnerabilities, credentials, and infrastructure information. He noted Accenture’s frequent targeting stems from its deep involvement in enterprise cloud environments, identity management, codebases, and digital transformation projects.
Accenture did not disclose how the attacker gained access, the exact quantity or type of data stolen, or whether client data was compromised. The incident follows previous breaches, including a 2024 attempt to sell employee data and a 2021 LockBit ransomware intrusion.
Reference: bleepingcomputer.com
Signed-in readers can open the original source through BestHub's protected redirect.
This article has been distilled and summarized from source material, then republished for learning and reference. If you believe it infringes your rights, please contactand we will review it promptly.
Black & White Path
We are the beacon of the cyber world, a stepping stone on the road to security.
How this landed with the community
Was this worth your time?
0 Comments
Thoughtful readers leave field notes, pushback, and hard-won operational detail here.
