Accenture Acknowledges Security Breach Following Claims of Stolen Data Sale

Published
Written by:
Rachita Jain
Rachita Jain
VPN Staff Editor
Key Takeaways
  • Accenture security breach confirmed: Company confirms an isolated breach after hacker claimed to sell alleged 35GB of stolen data.
  • Claims remain unverified: Accenture did not confirm alleged source code theft, customer impact, or attacker’s claimed data volume.
  • No user action required: Company says incident was remediated, with no disruption to operations or service delivery reported.

Accenture has officially confirmed that it experienced a security breach after a threat actor claimed to be selling allegedly stolen company data on a cybercrime forum. The confirmation marks the first official acknowledgment from the global IT services firm following reports that approximately 35 GB of internal data had been put up for sale online.

In a statement shared with BleepingComputer, Accenture said, "We are aware of this isolated matter, and we have remediated its source. There is no impact to Accenture operations and service delivery." The company did not disclose how the breach occurred or whether customer information was affected.

Official Confirmation Follows Earlier Claims of Data Theft

As previously reported by TechNadu, a threat actor using the alias "888" claimed to have stolen more than 35 GB of Accenture data and offered it for sale on a cybercrime forum. The post alleged that the dataset included source code, RSA keys, SSH keys, Azure Personal Access Tokens (PATs), Azure Storage access keys, and configuration files.

To support the claims, the attacker shared a screenshot appearing to show an Azure DevOps repository named "121123_AtriasTalentAcademy" being cloned from an Accenture-related domain. However, BleepingComputer noted that it could not independently verify the full scope of the alleged stolen data.

While Accenture has now confirmed that a security incident occurred, it has not verified the threat actor's claims regarding the amount or type of data allegedly accessed or exfiltrated. The company also declined to comment on whether any customer data was impacted.

What This Means for Customers and Privacy-Conscious Users

The latest update confirms that the previously reported incident was based on a real security breach, although many key details remain unknown. Accenture says it has already remediated the source of the incident and that its operations and service delivery have not been affected.

For now, there is no evidence that customers need to take any action, as the company has not announced any impact on client data or issued user-facing security guidance. However, organizations and individuals using Accenture services may want to monitor future updates in case additional information becomes available about the scope of the breach.

This is not the first time Accenture has faced a cybersecurity incident. The company also experienced a ransomware-related breach in 2021 involving the LockBit gang, while the same threat actor behind the latest claims had previously attempted to sell Accenture employee data following a third-party breach in 2024.

As of publication, Accenture has confirmed only that a breach occurred and has been remediated, while the threat actor's broader claims about the allegedly stolen data remain unverified.


For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: