Skip to content
Tech News
← Back to articles

Ernst & Young discloses data breach after support system hack

read original more articles
Why This Matters

The data breach at Ernst & Young highlights the vulnerabilities in third-party support systems used by major firms, exposing sensitive client data and emphasizing the importance of robust cybersecurity measures. This incident underscores the ongoing risks faced by large organizations and the need for proactive security protocols to protect client information and maintain trust in the industry.

Key Takeaways

Ernst & Young is notifying customers of a data breach caused by the compromise of a third-party support ticket system used by its IT personnel.

According to the company, support tickets submitted through the platform may have included documents containing client tax information.

Ernst & Young (EY) is among the world’s four largest auditing and professional services providers, offering auditing, tax, consulting, and transaction advisory services to major organizations in more than 150 countries.

The company employs 406,000 people and reported a global revenue of $53.2 billion last year.

The breach notification to affected clients states that Ernst & Young detected anomalous activity on its networks on April 23 and initiated an investigation.

With help from external cybersecurity experts, the company determined that an unauthorized third party had accessed the said platform between March 28 and April 12 and downloaded multiple documents.

The affected information included certain personal and financial data contained in or used to prepare tax filings. Since the notification sample features a placeholder for the specific data types, the type of the information exposed remains unclear.

Also, the company has not shared exactly how many customers were affected or whether the incident impacts only its U.S. customer base or other countries as well.

Ernst & Young says it secured its systems and notified federal law enforcement authorities, while it has assured that the unauthorized access has been removed.

The company also states that it is not aware of any misuse or further exposure of the stolen files and has no indication that particular individuals were targeted by the threat actors.

... continue reading