Global consulting giant Deloitte is confronting new cybersecurity allegations after a threat actor claiming the alias "303" reportedly posted internal GitHub credentials and proprietary source code on a dark web forum. The alleged breach specifically targets Deloitte's U.S. consulting division, potentially exposing critical development infrastructure to unauthorized access.
According to cybersecurity monitoring services, the threat actor published configuration files and repository information that appear to originate from Deloitte's internal systems.
The leaked materials include GitHub credentials that could grant access to the company's development environment, along with source code from proprietary projects within the consulting firm's portfolio.
This incident represents the latest in a series of cybersecurity challenges for the London-headquartered professional services network, which ranks among the "Big Four" accounting firms.
In December 2024, Deloitte faced similar allegations from the Brain Cipher ransomware group, though the company firmly denied those claims, stating that "no Deloitte systems have been impacted" and attributing any compromised data to "a single client's system which sits outside of the Deloitte network."
The consulting firm's cybersecurity vulnerabilities aren't entirely new. In 2017, security researchers discovered Deloitte's corporate VPN passwords, usernames, and operational details exposed in a public-facing GitHub repository, highlighting ongoing challenges in securing development resources.
The threat actor "303" has previously been linked to cybersecurity incidents, including an alleged December 2024 breach of an Indian software company that impacted major insurance providers, suggesting a broader pattern of targeting large corporations and government entities.
Deloitte has not yet responded to requests for comment regarding these latest allegations. The full scope and validity of the alleged breach remain unconfirmed, though the incident underscores the persistent cybersecurity threats facing major global organizations and their clients' sensitive information.