Accenture lost 'proprietary information' in summer ransomware attack

Written by
Oct 18, 2021 | CYBERSCOOP

Accenture has acknowledged in a filing to the Securities and Exchange Commission that outsiders extracted “proprietary information” in a cyber incident this summer.

The SEC filing filed Friday provides additional detail on a breach the company first discovered on July 30 and disclosed in early August. The disclosure coincided with the ransomware gang LockBit 2.0 leaking information from the consulting giant after saying Accenture failed to pay a $50 million ransom by its deadline.

CyberScoop had previously reported other details of the intrusion.

“While the perpetrators were able to acquire certain documents that reference a small number of clients and certain work materials we had prepared for clients, none of the information is of a highly sensitive nature,” read an internal memo that CyberScoop obtained.

A spokesperson didn’t directly answer a question about what kind of “proprietary information” the attackers stole, saying that the company’s original statement covered the matter.

“Through our security controls and protocols, we identified irregular activity in one of our environments,” that statement read. “We immediately contained the matter and isolated the affected servers. We fully restored our affected systems from back up. There was no

Read More: https://www.cyberscoop.com/accenture-ransomware-sec-form-10-k-lockbit/