Electronics

Account that! 5mn emails potentially exposed in Deloitte cyber-attack

Account that! 5mn emails potentially exposed in Deloitte cyber-attack

The internal review, "Windham", has involved specialists analyzing documents for six months trying to map out exactly where hackers went by analyzing the electronic footprint of searches that were made.

Attackers had accessed data from the company's email platform, the company said in statement, confirming a report by the Guardian newspaper.

A Deloitte spokeswoman said, however, that "only very few clients" were affected.

"The financial sector is getting an unprecedented wake-up call in case any had grown complacent - with targets in just a matter of weeks being one of the "big four" accountancy firms, one of the "big three" credit monitoring agencies, and the U.S. Securities and Exchange Commission", says John Christly, chief information security officer at security company Netsurion. It is thought that as well as emails (complete with sensitive security and design details in attachments), the hackers may have also accessed usernames, passwords, IP addresses, architectural diagrams for businesses and health information.

"Only very few clients were impacted", the company said.

The Guardian said the firm discovered the hack in March, but the cyber attackers could have hacked into its systems as far back as October or November 2016.

Deloitte said it had implemented a "comprehensive security protocol", after the incident was discovered, using internal and external experts to help respond.

Deloitte remains deeply committed to ensuring that its cyber-security defences are best in class, to investing heavily in protecting confidential information and to continually reviewing and enhancing cyber security'. "No disruption has occurred to client business, to Deloitte's ability to continue to serve, or to consumers".

Deloitte insists that only a small fraction of its clients have been "impacted" by the breach.

It is not known which government departments have been affected by the attack, and it's not clear whether this was a state-sponsored hack. A spokesman for the accounting firm did not immediately return a request for comment from The Hill.

Accountancy firm Deloitte was the victim of a cybersecurity attack that could have put 5 million emails, and other sensitive business data at risk, The Guardian reported.

"While today's fast-paced innovation enables strategic advantage, it also exposes businesses to potential cyber-attack".

Deloitte offers a range of consultancy services to blue-chip clients.