Ernst & Young Reports Data Breach from Third-Party Support System Hack

Ernst & Young Reports Data Breach from Third-Party Support System Hack

First seen 17 Jul 2026, 21:52 UTC BleepingcomputerCybersecuritynews 75% similarity 51.9

Article Content

Browse articles
ThreatCluster

Ernst & Young (EY) has disclosed a data breach resulting from unauthorized access to a third-party support ticket system used by its IT staff. The breach occurred between March 28 and April 12, 2026, during which an unauthorized party downloaded documents containing client tax information. EY began investigating after detecting anomalous activity on April 23, 2026. The company has not disclosed the number of affected clients or whether the breach impacts only U.S. customers. EY has offered affected clients 24 months of identity monitoring services through Experian. The breach notification was filed with the California Attorney General's office on July 15, 2026. As of now, there is no indication of misuse of the stolen data, and no group has claimed responsibility for the attack.

Key Points: • Ernst & Young experienced a data breach involving client tax information. • The breach was due to unauthorized access to a third-party support ticket system. • EY is providing 24 months of identity monitoring services to affected clients.

ThreatCluster AI

Timeline

2026-03-28
Unauthorized access began
An unauthorized party accessed EY's support ticket system, downloading sensitive documents.
BleepingComputer
2026-04-12
Unauthorized access ended
The unauthorized access to the support ticket platform concluded after approximately two weeks.
BleepingComputer
2026-04-23
Anomalous activity detected
EY detected unusual activity on its networks, prompting an investigation into the breach.
BleepingComputer
2026-07-15
Breach notification filed
EY filed breach notifications with the California Attorney General's office regarding the incident.
Cybersecuritynews
2026-07-17
Public disclosure of breach
EY publicly disclosed the data breach, informing clients of the potential exposure of their tax information.
BleepingComputer

Community

Browse all →