9. Accenture
The UpGuard Cyber Risk Team revealed in October that it had found multiple Amazon Web Services S3 storage buckets left unsecured by Accenture. The blog said the servers were configured for public access and were publicly downloadable.
At least four of those servers look to be related to software for the company's Accenture Cloud Platform. The data included information on the inner workings of the cloud platform and clients using the platform, the report said.
The unsecured server exposed secret API data, authentication credentials, certificates, decryption keys, customer information and data that could have been used to attack both Accenture and its clients, according to the report.
An Accenture spokesperson said there was no evidence that any client information was compromised since the company has other security protections in place that would prevent it.
