{"id":1000897235,"date":"2024-09-25T15:45:21","date_gmt":"2024-09-25T19:45:21","guid":{"rendered":"https:\/\/www.goingconcern.com\/?p=1000897235"},"modified":"2024-09-25T15:45:21","modified_gmt":"2024-09-25T19:45:21","slug":"hackers-say-they-got-their-hands-on-deloitte-intranet-communications","status":"publish","type":"post","link":"https:\/\/www.goingconcern.com\/hackers-say-they-got-their-hands-on-deloitte-intranet-communications\/","title":{"rendered":"Hackers Say They Got Their Hands on Deloitte Intranet Communications"},"content":{"rendered":"\n

This made the fringe cybersecurity news a few days ago: Deloitte got hacked. Again. And in a tremendously noobish way.<\/p>\n\n\n\n

SecurityWeek<\/em> reports<\/a>:<\/p>\n\n\n\n

\n

The hacker known as IntelBroker announced late last week on the BreachForums cybercrime forum the availability of \u201cinternal communications\u201d obtained from Deloitte, specifically an internet-exposed Apache Solr server that was accessible with default credentials.<\/p>\n\n\n\n

The hacker claims the stolen data includes email addresses, communications between intranet users, and internal settings.<\/p>\n\n\n\n

The data is available for download to the hacking forum\u2019s active users or those who have purchased credits.<\/p>\n<\/blockquote>\n\n\n\n

Cyber Security News<\/em> has a screenshot of the forum post<\/a>, a forum we won’t be visiting tyvm.<\/p>\n\n\n

\n
\"\"
Screenshot of a BreachForums post. Source: Cyber Security News<\/a><\/figcaption><\/figure><\/div>\n\n\n

According to CSN, the compromised data includes email addresses and communications between intranet users, among other things. Deloitte told SecurityWeek<\/em> an internal investigation “has found no threat to client data or other sensitive data related to this incident.”<\/p>\n\n\n\n

A quick search of our archive reveals a few prior hacking incidents for Deloitte:<\/p>\n\n\n\n