Accenture: The latest high profile victim of ransomware

On Wednesday 11th August, Consultancy firm, Accenture was hit by a LockBit ransomware attack that saw the release of some of it’s confidential information – despite saying that the breach had been contained. Reports show that 2,500 devices at Accenture have been compromised, which in itself is likely to cause huge disruption.

A LockBit Ransomware attack is a type of ransomware that prevents users from accessing infected systems until a ransom is paid.

So far, this looks to be a typical double-extortion campaign where data has not only been encrypted, but are also seeing threats of data leakage.

Accenture wrote - “Through our security controls and protocols, we identified irregular activity in one of our environments. We immediately contained the matter and isolated the affected servers. We fully restored our affected servers from back up. There was no impact on Accenture’s operations, or on our clients’ systems.” However, with some sources saying that the hackers have already published over 2000 files to the Dark Web, I’m on the fence as to what “no impact” means.

It's been said that we can expect more data to be leaked, upward of 6Tb if the $50 million ransom isn’t paid.