Attention: You are using an outdated browser, device or you do not have the latest version of JavaScript downloaded and so this website may not work as expected. Please download the latest software or switch device to avoid further issues.

News > Attacks & Threats > Professional Services Giant Ernst & Young (EY) Hacked

Professional Services Giant Ernst & Young (EY) Hacked

Ernst & Young has begun notifying clients of a data breach after an attacker compromised a third-party support platform and downloaded documents containing personal and financial information ...

Ernst & Young has begun notifying clients of a data breach after an attacker compromised a third-party support platform and downloaded documents containing personal and financial information used in preparing tax returns.

The incident affected an external IT service-management system used by EY employees supporting the firm’s client tax services. Support tickets created through the platform could include document attachments, creating a route through which confidential tax records and related financial information were exposed.

EY detected suspicious activity involving the platform on April 23, 2026, and launched an investigation with assistance from an independent cybersecurity firm. The investigation determined that an unauthorised third party had accessed the system between March 28 and April 12 and downloaded documents belonging to multiple clients. More here

Similar Stories

A cryptomining incident highlights how AI gateways can provide access to AI models, cloud infrastructure, and identity and access management (IAM) data. More...

Microsoft signed a malicious kernel driver, and now it's being used to kill security software in ransomware attacks. More...

Two new models from Chinese firms compete with top US mainstream and frontier models. Should cyber-defenders be worried? More...

An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and enc… More...

Does life feel Orwellian sometimes? One researcher has a solution for you: graphic tees that confuse the neural networks… More...

Have your say

 

News Categories

Ernst & Young has begun notifying clients of a data breach after an attacker compromised a third-party support platform and downloaded documents containing personal and financial i… More...

A cryptomining incident highlights how AI gateways can provide access to AI models, cloud infrastructure, and identity a… More...

Microsoft signed a malicious kernel driver, and now it's being used to kill security software in ransomware attacks. More...

Two new models from Chinese firms compete with top US mainstream and frontier models. Should cyber-defenders be worried? More...

An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and enc… More...

image

Contact Us

Security Interest Group Switzerland
c/o Bridge Head AG
Sulzbergstrasse 34
5430 Wettingen
Switzerland

Follow Us

This website is powered by
ToucanTech