An individual using the pseudonym ‘888’ has surfaced on a cybercrime platform, asserting to have acquired data from Accenture, a leader in IT services and consulting. The hacker claims to possess 35 GB of source code along with related credentials.
Details of Alleged Data Breach
In a forum post dated July 6, 2026, ‘888’ alleged that Accenture experienced a data breach earlier that month. The supposed stolen data includes source code, RSA keys, SSH keys, Azure Personal Access Tokens (PATs), Azure Storage Access Keys, and configuration files.
It’s not the first time ‘888’ has targeted Accenture. The hacker previously claimed involvement in a 2024 incident, which Accenture publicly denied.
Evidence and Claims by the Hacker
To substantiate their claim, ‘888’ shared a screenshot illustrating command-line activity linked to Azure DevOps. The image purportedly shows a curl request to a ‘dev.azure.com’ endpoint and a git clone action, suggesting live access to a repository.
The output refers to a repository named ‘121123_AtriasTalentAcademy,’ allegedly hosted under a concealed accenture.com URL. It displays project metadata and remote URLs for Azure Repos, with a partial git clone downloading numerous objects quickly, presented as evidence of access.
Accenture’s Response and Security Recommendations
The hacker is offering this data as a ‘One Time Sale,’ insisting on payment in Monero, a cryptocurrency favored for its anonymity on cybercrime forums. Pricing details have not yet been disclosed.
Accenture has acknowledged a breach but has neither confirmed the extent nor the specific nature of the data claimed to be stolen. The company reassured that their operations and service delivery remain unaffected.
Security experts advise caution regarding the data specifics until further evidence is provided. Meanwhile, organizations using Azure DevOps are urged to scrutinize PAT rotations and audit repository access logs as a preventive measure.
This incident underscores the ongoing need for robust cybersecurity practices and vigilant monitoring of IT infrastructure.
