AWS buckets are again left exposed; credentials are again compromised and exploited.
Another major consultancy has suffered data exposure. UpGuard reports that on September 17 their researchers found sensitive Accenture data exposed in four unsecured Amazon Web Services S3 buckets (Infosecurity Magazine). It's unclear whether the data, now secured, were obtained by bad actors. Accenture says the only unauthorized scan they've detected came from UpGuard, and that the material exposed, including keys and credentials, was related to decommissioned systems (and which therefore poses relatively little risk) (Engadget).
Deloitte's breach may be worse than initially believed. The Guardian reports three-hundred-fifty clients (including US Government agencies and multinational corporations) suffered exposure. Deloitte, which had put the number of affected clients at six, disputes the report. New York State's Attorney General is investigating (Financial Times).