Accenture has acknowledged a security incident after threat actor “888” claimed to be selling approximately 35GB of data allegedly stolen from the company, including source code, RSA and SSH keys, Azure personal access tokens, Azure Storage access keys and configuration files.
While the full scope of the data accessed has not been publicly detailed, exposure of development and authentication-related material could support unauthorised access to sensitive corporate information, employee or customer data, or client-linked deployments and integrations.
Organisations using Accenture-managed services, integrations or privileged access should confirm whether related credentials, tokens, keys, certificates or configuration files may have been exposed, and rotate or revoke them where exposure cannot be ruled out.