CybersecurityJuly 18, 2026· via Security Affairs

EY probes breach after third-party ticket system hack

EY probes breach after third-party ticket system hack

Image : Security Affairs

Ernst & Young (EY) is investigating a data breach after attackers compromised a third-party ticketing system used by its IT teams to handle client tax documents. On April 23, 2026, EY detected unusual activity on the platform and launched a response with external cybersecurity experts. Investigators later found that an unauthorized third party had accessed the system between March 28 and April 12, downloading multiple client files that included personal and financial data used in tax filings.

A supply-chain weak spot

The incident highlights the persistent risks introduced by third-party IT vendors, even at large, security-focused organizations. EY uses the compromised platform to streamline support for teams performing tax-related client work, and support tickets can include sensitive documents. While EY has secured the system and removed unauthorized access, the breach underscores how a single compromised supplier can expose vast amounts of client data.

Limited details, but proactive steps

EY has not disclosed how many clients were affected or whether any specific individuals were targeted. The company states it has no evidence of misuse so far and is offering 24 months of identity monitoring through Experian to affected clients. Authorities have been notified, and EY is cooperating with regulators while continuing its investigation.

Why it matters

Third-party breaches are a growing concern in professional services, where firms like EY handle highly sensitive data. This incident illustrates how supply-chain vulnerabilities can undermine even robust security postures. For clients, it reinforces the need to scrutinize vendors and monitor for potential misuse of exposed information. For the industry, it serves as a reminder to prioritize end-to-end security, not just internal controls.


Source: Security Affairs. AI-assisted editorial synthesis — TechnoExpress.

Read the original source on Security Affairs →

← Back to home