VYPR
breachPublished Jul 7, 2026· 1 source

Accenture Confirms Data Breach After Hacker Offers Stolen Source Code for Sale

Global IT services giant Accenture has confirmed a data breach after a threat actor claimed to have exfiltrated 35 GB of source code and other sensitive data, which is now being offered for sale.

IT services giant Accenture has confirmed it suffered a security breach after a threat actor claimed to have stolen 35 GB of source code and other data from the company. The breach was disclosed after a threat actor known as "888" began offering the stolen information for sale on a cybercrime forum.

"We are aware of this isolated matter, and we have remediated its source. There is no impact to Accenture operations and service delivery," Accenture told BleepingComputer in a statement. The company, a global professional services firm providing consulting, technology, cloud, engineering, and managed services, did not elaborate on the nature or extent of the breach.

The threat actor's forum post stated, "Today I am selling the Accenture Data Breach, thanks for reading and enjoy! In July 2026, Accenture suffered a data breach which resulted in just over 35gb of source codes getting stolen from the company." The actor claims the exfiltrated data includes source code, RSA keys, SSH keys, Azure PAT (personal access tokens), Azure Storage access keys, and configuration files.

To substantiate their claims, the threat actor shared a screenshot appearing to show them cloning an Azure DevOps repository hosted under a redacted accenture.com hostname. BleepingComputer has not independently verified the full scope of the data allegedly stolen. Accenture has not commented on the specific claims made by the threat actor regarding the amount or type of data accessed.

It remains unclear how the attackers gained initial access to Accenture's systems or whether any customer data was compromised in this incident. The company has not disclosed these details. This incident follows a pattern of previous security incidents involving Accenture.

The same threat actor, "888," had previously attempted to sell Accenture employee data following a third-party breach in 2024. Additionally, Accenture experienced a significant data breach in 2021 when the LockBit ransomware gang compromised its systems and stole data.

Accenture has stated that the source of the breach has been remediated and that there is no impact on its operations or service delivery. However, the full scope and impact of the breach are still under investigation by the company.

BleepingComputer has reached out to Accenture for further details and will update this story as more information becomes available. The incident highlights the ongoing risks faced by large IT service providers, which often hold vast amounts of sensitive data for their clients.

Synthesized by Vypr AI