Deloitte Hacked: Sensitive Personal Data and Confidential Filings Compromised.
Deloitte, a global accounting firm was a victim of a cyber- attack, the incident was reported on Monday by Deloitte providing few details about the breach that affected the data of some clients.
Deloitte, a registered company in London and is a victim of a cybersecurity attack that was unnoticed for months at their global Headquarters in New York.
Based on the report by the Guardian newspaper on Monday which broke the news of the Deloitte breach, confirmed the company’s statement with some details that the company’s email platform was the source in which the attackers accessed the data from which they used in the hack.
The U.S. Securities and Exchange Commission, Wall Street’s top regulator, and Equifax Inc, one of the largest credit-monitoring bureaus, reported this month that sensitive personal data and confidential filings were compromised by the hackers.
An independent consultant who helps financial firms investigate cyber attacks Shane Shook said the trend was going to continue growing because the attacks are targeted on financial firms.
The government authorities were immediately contacted said by the firm and the “very few clients” that were affected and victims of the hack were also notified instantly as soon as they became aware of the incident.
Deloitte is known as one of the worlds “big four” accountancy firm that provides accounting, consulting and auditing services, including advice on high-end Cybersecurity, mergence and acquirements/acquisitions. It also runs a cyber security business that helps customers defend their networks and investigate breaches.
The Guardian also reported that six clients were contacted by Deloitte. The company did not reveal the names of the clients, or affirm how many clients it had contacted or disclose the type of data stolen.
The statement said by the firm was “No disruption has occurred to clients businesses, to Deloitte’s ability to continue to serve clients, or to consumers”.
Deloitte said it had enforced a “comprehensive security protocol,” using internal and external experts to help respond. The comprehensive security protocol was put into effect as soon as the incident was discovered.
A former federal cyber crimes prosecutor, Mark Rasch, said it’s too early to say how severe the attack was due to so little is known of what really happened.
He said the attack was “a big deal” considering Deloitte holds sensitive information about its customers across business units that provide accounting services, review or audit data on potential acquisitions and perform cyber security services.
Spokeswoman A U.S. Federal Bureau of Investigation refuse to comment, enumerating agency policy to neither authenticate nor contradict investigations.