Data leak in Deloite after a cyber attack

Deloitte, one of the largest consultancies and auditors worldwide, has been the victim of a cyber attack through which user names, passwords, IP addresses, and other sensitive information have been stolen from some of its customers. The company has indicated that few affected customers and mostly Americans, although some sources claim that more than 5 million emails have been stolen on the Deloitte server.

The cyber attack was done through an administrator account, which was accessed with a simple password and no verification in two steps. This account gave privileged and unrestricted access to all areas of the attacked server. The company was aware of the attack in March this year, however they believe it could be carried out between October and November 2016.