News about the attack was included in the company’s financial report for the fourth quarter and full fiscal year, which ended on August 31, 2021.
“In the past, we have experienced, and in the future, we may again experience, data security incidents resulting from unauthorized access to our and our service providers’ systems and unauthorized acquisition of our data and our clients’ data including: inadvertent disclosure, misconfiguration of systems, phishing ransomware or malware attacks. For example, as previously reported, during the fourth quarter of fiscal 2021, we identified irregular activity in one of our environments, which included the extraction of proprietary information by a third party, some of which was made available to the public by the third party. In addition, our clients have experienced, and may in the future experience, breaches of systems and cloud-based services enabled by or provided by us.” reads the financial report published by Accenture.”To date these incidents have not had a material impact on our or our clients’ operations; however, there is no assurance that such impacts will not be material in the future, and such incidents have in the past and may in the future have the impacts discussed below.”
At the time of the attack, threat intelligence firm Cyble reported that the ransomware gang stole databases containing over 6TB of data and were demanding a $50M ransom. The experts also claimed that the hack was the result of an insider job.
After the attack, Accenture pointed out that the operations were not impacted and that it was able to restore from backups. The company also denied claims that ransomware operators have stolen customer credentials.
However the ransomware gang told Bleeping Computer that they had breached the computer network of an airport using Accenture software.
Accenture did not provide details about the attack, at the time of this writing the company did not confirm the theft of 6TB of sata.
(SecurityAffairs – hacking, ransomware)