Deloitte, one of the world’s “big four” accountancy firms, has been reportedly come under a significant cyberattack. The company revealed that hackers had accessed data from its email platform, including the confidential emails and plans of some of its blue-chip clients.
Registered in London and headquartered in New York, Deloitte is an industry-leading private, consultancy firm that specializes in providing consulting, audit & assurance, risk and financial advisory, tax, risk management, and other services to clients. Some world’s largest financial institutes, media enterprise, multinational companies, pharmaceutical firms and government agencies are on the client list of Deloitte.
The breach of the company email system means that all Deloitte clients are under the risk of data leakage. So far, there have been six clients of Deloitte informed of the data leakage risks.
The auditing and consulting firm stated on Monday that it had notified governmental authorities immediately after it was aware of the incident and it would keep an internal investigation into the attack to inform any client whose data was impacted in the first place.
The hack was discovered by Deloitte in March this year. However, it is believed that its systems have been hacked since October or November 2016.
The hackers attacked Deloitte’s global email server via an administrator account. Theoretically, with only a single password, they can access to all areas with no restriction.
Citing reliable source, Deloitte currently is storing all emails to and from its 244,000 staff in the Azure cloud service.
It still remains a secret whether the incident was caused by business rivals, state-sponsored hackers or just a lone wolf. Citing reliable sources, it is possible to figure out suspects behind the attacks by regenerating hackers’ queries before their tracks being covered.
The irony is that Deloitte described cyber analytics as a highly potential threat to the firm in its latest annual results. And then it developed a global network in the name of “Cyber Intelligence Center” to protect clients from security events through proactive detection, response, and recovery. Deloitte finds itself deeply embarrassing to both the public and its clients who once consulted it about how to manage the risks caused by sophisticated cyberattacks.
Maybe there is no need to be that, however, since all major companies are targeted by hackers. A few days before, Equifax, one of the largest consumer credit reporting agencies in the world, confirmed the cyberattack that may have affected 143 million American consumers. Hackers gained access to sensitive information like Social Security numbers and drivers’ license numbers of consumers.
According to the latest research conducted by Kaspersky Labs, the average cost of cyberattacks on large companies in North America increased to $1.3 million in 2017. The report also shows an increasing importance of IT security, reflected on global IT security budgets rose from 17 percent to 20 percent this year.