Deloitte Denies Claims of Data Breach by Brain Cipher Ransomware Group
Deloitte has denied claims by the Brain Cipher ransomware group that they stole 1 terabyte of data from the company. The ransomware group listed Deloitte UK on its Tor leak site, but Deloitte maintains that no company systems were affected and the data in question originates from a single client’s system outside of the Deloitte network.
Brain Cipher threatened to release the stolen data within five days unless a ransom was paid. However, Deloitte insists that the data breach is limited to a single client and has not impacted their own systems.
This incident follows a previous hack of Deloitte in September 2017, where confidential emails and plans of blue-chip clients were compromised. This earlier breach led to criticism of the company as a prominent player in the cybersecurity industry.
Key Points:
- Deloitte denies data breach claims by Brain Cipher ransomware group.
- Ransomware group claims to have stolen 1 terabyte of data.
- Deloitte says the data originates from a single client’s system outside their network.
- Brain Cipher threatens to release stolen data if ransom isn’t paid.
- Incident follows a previous hack of Deloitte in 2017.
Additional Information:
- The Brain Cipher ransomware group has been active since April 2024.
- In June 2024, they targeted an Indonesian data center, causing disruption to government services and airport delays.
- Researchers suspect a connection between Brain Cipher and EstateRansomware groups.
- Deloitte has faced hacking claims twice recently.
Sources:
- Security Affairs article: https://securityaffairs.com/wordpress/147652/hacking/deloitte-hacked-brain-cipher.html
- The Guardian article on 2017 hack: https://www.theguardian.com/technology/2017/sep/04/deloitte-accounts-hack-cyber-security-consultancy-stolen-data