Thursday, December 7, 2023

Deloitte Hacked by Cyber Criminals and Revealed Client & Employee’s Secret Emails

By Balaji

One Of the Worlds biggest Auditing  Firm Deloitte Hacked by Cyber criminals and many Clients Secret Email details are under high-risk stage by this Sophisticated hacking attempt.

Deloitte is one of the Big Four accounting firms and the largest professional services network in the world by revenue and currently 263,900 Employees Working for Deloitte.

This Hacking Attempt has been Performing by some Private hacking Group Since 2016 November but Deloitte haven’t been noticed this Attack.

Also Read Verizon Wireless Confidential Data Leaked Accidentally by Its Employee

Reported Hacking Attempt State that, Exposed Information Contains Deloitte 263,900 Employee’s send and receive Email.

This Biggest Breach Estimated 5 million emails were in the hacked email cloud and could have been accessed by the hackers.

Private Hacking Group Compromised the Deloitte’s Main Email Server via administrator’s account that has given Master Privilege to access all the Areas.

According to theguardian Report, The account required only a single password and did not have “two-step“ verification  and Emails to and from Deloitte’s 244,000 staff were stored in the Azure cloud service, which was provided by Microsoft. This is Microsoft’s equivalent to Amazon Web Service and Google’s Cloud Platform.

Hackers may have access the sensitive Information Such as usernames, passwords, IP addresses, architectural diagrams for businesses and health information.

Apart From this, Some of the Emails Contain attachments with sensitive security and design details.

Also Read   Adobe Most Secured Private PGP Key Leaked Online

Unlike Equifax Breach, Deloitte is not a Public company and Provide Cybersecurity advice to some of the world’s biggest banks, multinational companies, media enterprises, pharmaceutical firms and government agencies.

In this case, six of Deloitte’s clients have been told their information was “impacted” by the hack. Deloitte’s internal review into the incident is ongoing.

“In response to a cyber incident, Deloitte implemented its comprehensive security protocol and began an intensive and thorough review including mobilizing a team of cybersecurity and confidentiality experts inside and outside of Deloitte,” a spokesman said.

Managed WAF Protection

Website

Latest articles

cyber security

Bluetooth keystroke-injection Flaw: A Threat to Apple, Linux & Android Devices

An unauthenticated Bluetooth keystroke-injection vulnerability that affects Android, macOS, and iOS devices has been...
cyber security

Atlassian Patches RCE Flaw that Affected Multiple Products

Atlassian has been discovered with four new vulnerabilities associated with Remote Code Execution in...
cyber security

Reflectiz Introduces AI-powered Insights on Top of Its Smart Alerting System

Reflectiz, a cybersecurity company specializing in continuous web threat management, proudly introduces a new...
cyber security

SLAM Attack Gets Root Password Hash in 30 Seconds

Spectre is a class of speculative execution vulnerabilities in microprocessors that can allow threat...
cyber security

Akira Ransomware Exploiting Zero-day Flaws For Organization Network Access

The Akira ransomware group, which first appeared in March 2023, has been identified as...
Cyber Attack

Hackers Deliver AsyncRAT Through Weaponized WSF Script Files

The AsyncRAT malware, which was previously distributed through files with the .chm extension, is now being...
cyber security

BlueNoroff: New Malware Attacking MacOS Users

Researchers have uncovered a new Trojan-attacking macOS user that is associated with the BlueNoroff APT...
Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

API Attack Simulation Webinar

Live API Attack Simulation

In the upcoming webinar, Karthik Krishnamoorthy, CTO and Vivek Gopalan, VP of Products at Indusface demonstrate how APIs could be hacked.The session will cover:an exploit of OWASP API Top 10 vulnerability, a brute force account take-over (ATO) attack on API, a DDoS attack on an API, how a WAAP could bolster security over an API gateway

Register Your Spot

Related Articles

Connect with GBHackers On Security

Join 70,000 Security Professionals

Stay safe online with free daily cybersecurity updates. Sign up now!

GBHackers on security is a highly informative and reliable Cyber Security News platform that provides the latest and most relevant updates on Cyber Security News, Hacking News, Technology advancements, and Kali Linux tutorials on a daily basis. The platform is dedicated to keeping the community well-informed and up-to-date with the constantly evolving Cyber World.

Menu

Contact US:

[email protected]