Accenture Hit By LockBit Ransomware Hack: Attack And Response
Accenture on Wednesday was hit by a LockBit ransomware attack, and despite saying it had contained the breach before the deadline for its confidential information was released, saw the limited release of some of its confidential information.
The incident comes on the heels of another high-profile attack targeting clients via the solution providers that they depend on for IT services. In that attack, hackers breached the VSA RMM (remote monitoring and management) technology of Miami-based Kaseya, giving them access to clients of several MSPs who depend on the Kaseya technology to run parts of their business.
While Accenture has assured customers that the attack was contained, several security industry observers say they are seeing confidential Accenture information being made public, with more expected to come.
Michael Goldstein, CEO of LAN Infotech, a Fort Lauderdale, Fla., solution provider that was affected by the recent Kaseya MSP ransomware attack, told CRN he was “stunned” to learn that Accenture was the latest victim of a ransomware attack.
“Accenture is a well-respected company that I am sure is spending an exorbitant amount of money on security,” he said. “But they have a lot of ground to cover. It’s very hard to protect a multi-national company like Accenture.”
Goldstein said the Accenture breach is yet another call to action for every company to review their security technology posture and procedures. “If a $45 billion company like Accenture is vulnerable then everyone is vulnerable,” he said.
Preparing for and responding to a cyberattack is difficult, as Accenture and so many other recent examples have shown. For a look at how the LockBit attack on Accenture happened, and at Accenture’s response and further fallout, click through the slideshow.