Accenture Called It an "Isolated Matter." Here Are the Questions Every Board Should Ask Any Delivery Partner.
A confirmed incident and a threat-actor claim are two different things. Both should teach every enterprise the same lesson about delivery-partner governance, Microsoft tenant boundaries, and the credential perimeter almost nobody has sized.
By Errin O'Connor — Founder & Chief AI Architect, EPC Group · Microsoft Solutions Partner across all six designations · Six consecutive quarters as a G2 Leader in BI consulting
First, the news — sorted into three honest buckets
I want to open with the discipline most of this week's coverage skipped, because it is the single most useful thing an executive team can do with a story like this one. Every statement about the Accenture incident belongs in exactly one of three buckets. Confuse them and the boardroom conversation goes sideways inside ten minutes.
CONFIRMED. Accenture has publicly acknowledged a security incident. Spokesperson Peter Soh told Cybersecurity Dive on July 8, 2026: "We are aware of this isolated matter and we have remediated its source. There is no impact to Accenture operations and service delivery." That a security incident occurred, and that Accenture has characterized it as isolated and remediated, is the confirmed part of this story.
CLAIMED. A threat actor using the handle "888" — the same handle behind a 2024 Accenture claim the company said at the time was vastly exaggerated — posted a listing on an underground forum offering what it describes as roughly 35 gigabytes of source code, RSA keys, SSH keys, Microsoft Azure personal access tokens, Azure Storage access keys, and configuration files, allegedly pulled from private Azure DevOps repositories, per reporting from Cybersecurity Dive, TechRadar, and SecurityWeek. That is the threat actor's inventory. Responsible outlets are reporting it as a claim, and the material is described as offered for sale — not confirmed sold.
PUBLICLY UNKNOWN. Whether the archive is complete, authentic, or partial. Whether the credentials are still valid. Whether any specific client environment has been reached. Whether the archive has actually been bought, and by whom. And exactly what "remediated its source" scoped — a single misconfiguration, or the wider environment the incident originated in.
I am going to write the rest of this from inside those three buckets, because that discipline — take the claim seriously enough to act on it, without accepting it as gospel — is exactly the posture a mature enterprise adopts. It is also, notably, the posture the affected firm's own one-sentence statement did not model.
Why "no operational impact" does not answer your question
Here is the most important sentence on this page, and I want to say it as plainly as I know how.
"There is no impact to our operations and service delivery" is a statement about the affected firm's internal state. It is not — and cannot be — a statement about whether any client environment reachable by any credential in the alleged archive is exposed.
Those are two different investigations. Two different sets of investigators. Two different disclosure obligations. The firm's investigation asks: are we operational, are our systems producing output, are our engagements still delivering? The client's investigation asks a completely different question: what did the partner hold on my behalf, under what identity, at what scope, was any of it rotated when this went public, and what is my independent right to see the forensic conclusion? A statement about the partner's operations cannot answer the client's question. They are not the same thing.
I have watched dozens of these events over 29 years, and the pattern never changes. The public statement addresses the firm's operations, because operations are what counsel can defensibly attest to inside 72 hours. The client-exposure question runs on a separate track — sometimes handled quietly and well behind the scenes, and sometimes handled with a polite email that leans on the phrase "no reason to believe" instead of "we have confirmed." Watch that language at your own firm. "No reason to believe your engagement was affected" is a legal artifact. "We have confirmed your engagement was not affected" is a fact. The gap between those two sentences is exactly where your risk lives.
What the claimed credentials would mean — if the claim proves out
The inventory is a claim, and I am going to keep treating it as one. But a board cannot ask an informed question without understanding what the answer would mean, so let me walk each item the way I would walk a client through it on a whiteboard.
Source code is the map. It exposes internal logic, undocumented endpoints, third-party dependencies, and the hardcoded secret an engineer swore they'd move to a vault on a Tuesday in 2023 and never did. Exfiltrated source code turns vulnerability research from black-box guessing into white-box reading. The industry has understood this for twenty years.
RSA private keys are proof of identity for the systems they represent. When one is exfiltrated, the fix is not "rotate the key." It is rotate the key, rebuild the trust chain across every dependent system, and prove no forged trust relationship was established during the exposure window. That is not a 72-hour task. In a large enterprise it is a multi-month remediation.
SSH keys authenticate engineers and automation to servers without a password. In a delivery firm they are routinely provisioned to reach client-facing infrastructure. If any exfiltrated key was, the infrastructure it authenticates to is reachable in principle until every such key is rotated and audited.
Azure DevOps personal access tokens. Microsoft's own guidance is blunt: scope them narrowly, give them short lifetimes, rotate them often, replace them with managed identities wherever you can. In the real world PATs are frequently broad-scoped and long-lived. An exfiltrated one is a credentialed doorway into whatever it was authorized to reach.
Azure Storage access keys are master keys to a storage account. Every rotation has to happen at once, across every consumer of the key, or the rotation is incomplete.
Configuration files. In a disciplined shop they hold no secrets, because every secret is in a vault. In the real world they hold the connection strings, service-principal secrets, and API keys a developer meant to vault and didn't.
If any of that is verified in the coming weeks, the client-side response is identical for every category: verify what your partner held on your behalf, verify it has been rotated, and verify the rotation independently. That is a board conversation, not a Slack thread.
Ten questions every board should bring to this week's audit committee
These apply to Accenture where Accenture is your delivery partner. They apply equally to any large integrator. And they apply to EPC Group when EPC Group is engaged — that last part is deliberate. A firm that will not answer these about itself has no business in the delivery seat at any enterprise.
- For each external partner touching our Microsoft tenant, our source code, or our production credentials — what specific artifacts does that partner hold on our behalf, under what identity, with what rotation policy, and where does the inventory live?
- Which of our partners has publicly disclosed a security incident in the last 36 months, and for each, what is our contractual right to an independent third-party attestation that it has been remediated? Have we exercised it in writing?
- Do we have a documented incident-response protocol that assumes a specific, currently engaged partner as the entry vector — a named one on the active program list, not a hypothetical vendor? Is it tested?
- What personal access tokens, service principals, storage keys, and shared credentials does any external partner hold that reach into our environment? On what schedule are they rotated, and who signs the rotation attestation?
- What is our General Counsel's written opinion on the corporate exposure if the source code, key material, or configuration files describing our applications became public through a partner's compromise? Has it been updated since the current engagement began?
- Do our subcontract chains include the partner's subcontractors, offshore delivery centers, and acquired-firm personnel? Are they inventoried with the same rigor as first-party staff? Do they have the same access?
- Does our cyber, tech E&O, and D&O coverage respond to a claim arising from a partner's breach — or is it structured to require we prove our own controls first? Have we read the exclusion language on the most recent renewal, with counsel, this quarter?
- What is our practical velocity to swap an existing partner for one with a smaller perimeter and Microsoft-stack specificity, if exposure exceeds our tolerance? Ninety days? A hundred eighty? A year?
- Which of our AI, Fabric, Power BI, Azure, or Copilot deployments are architected to assume the current partner's continued presence in our tenant, and which are portable if we needed to change providers?
- Have we ever commissioned an independent, senior-led second-opinion review of the architecture and delivery quality of a large-integrator engagement in progress? If not, why not?
None of those is theoretical anymore. Every one is a Monday-morning question in the specific week we are living through.
Governance is the floor. Management is the ceiling we forgot to build.
I have used a version of this line in every piece I have published this year, and I am going to keep using it until every executive team in North America internalizes it. Governance is not a compliance checkbox or the audit you buy once a year and file. Governance is the load-bearing floor that decides whether the money you spend above it produces returns or produces exposure. When a partner has built the floor, an incident is a bad week that produces a rotation cycle, a client attestation, and a lessons-learned. When a partner skipped the floor, an incident is a headline that produces an audit-committee meeting, a General Counsel opinion, an insurance renewal with new exclusions, and a round of client calls that open with "we need to talk about the next phase."
In 29 years I have never once read a breach postmortem that concluded the firm's problem was insufficient novelty. Every postmortem I have ever read said, in one form or another, the firm skipped the hygiene. And the hygiene is boring: every workstation enrolled in modern management, every repository behind conditional access, every token scoped and short-lived, every secret in a vault, every service reading that secret through a managed identity, every tenant boundary enforced by policy rather than trust, every AI agent reaching in through a scoped identity registered in Entra rather than a developer's broad-scope token. None of it is exotic. All of it is the work that never makes the news when it goes well and puts a firm on the front page when it doesn't.
What strong delivery-partner governance actually looks like
Every partner in your Microsoft, Azure, Power BI, Fabric, or Copilot environment should be able to produce, on demand and in writing, the following. If yours can't, that is a governance conversation — not security theater.
- A named-person inventory. Every human with any credential provisioned against your tenant, by name, role, employer entity, and last access date. Not a headcount. Names.
- A credential and identity inventory. Every service principal, managed identity, PAT, storage key, SSH key, and API secret provisioned against your tenant, with scope, lifetime, rotation policy, and last rotation date.
- A subcontractor inventory. Every subcontractor, offshore delivery partner, and acquired-firm entity whose people touch your engagement, held to the same rigor as first-party staff.
- An access-path diagram. A current, dated map of every path the partner uses to reach your environment — jump hosts, VPNs, Bastion, DevOps agents, self-hosted runners, on-prem gateways, direct console.
- A code and artifact inventory. Every repository, pipeline, ARM/Bicep/Terraform module, and configuration artifact built for you, with location, ownership, and IP assignment recorded.
- A rotation runbook. A tested procedure to rotate every credential in the inventory within a defined time-to-rotation after a partner incident, with a named human accountable for executing it.
- A right-to-audit and a right-to-attestation clause in the master services agreement — your explicit right to commission an independent audit at your discretion, and to demand third-party attestation that any disclosed incident has been remediated to your standard.
- An exit plan. A written, tested, current plan for transitioning the engagement to another provider, with named steps, named systems, and a maximum transition duration. An exit plan is not a declaration of war. An exit plan is governance. Every mature partner welcomes the conversation, because a partner that can be exited cleanly is a partner that was engaged cleanly.
If yours cannot produce most of this list inside a business week, that is not because the request is unreasonable. It is because the floor was skipped and the ceiling was built on assumptions instead of controls.
Rate reality — because the security conversation and the economic conversation are the same conversation
Enterprise blended rates on large-integrator engagements consistently sit in the $300-to-$500-per-hour range across a typical delivery team. I am not theorizing. I have reviewed these proposals for the better part of three decades. I have redlined the statements of work. I have sat on the client side of the table while the number came down and the change orders that would push it back up were quietly staged for later. A blended rate between $300 and $500 an hour is not a rumor — it is the number on the last page of the pricing schedule after the discounts and before the change orders, once managing directors, senior managers, architects, offshore delivery, and specialty subcontractors are averaged together.
Public schedules, where they exist, corroborate the range without my having to quote a single confidential proposal. U.S. General Services Administration Multiple Award Schedule filings show published senior-category rates at large integrators reaching into the mid-$300s per hour, and materially higher for principal-level roles. Those are public, negotiated government rates; commercial pricing runs on different mechanics, but the blend lands in the same band on the engagements I see.
Now do the math a board actually cares about. A 100,000-hour engagement — not unusual for a two-year AI, Fabric, or Microsoft 365 program at a Fortune 500 — at a blended $400 an hour is a $40 million program. At a blended $300, it is $30 million. Same engagement. A $10 million delta living inside the blend.
The specialist model is different in shape, not just in rate. A smaller team, more senior on average, with fewer management layers between the client and the person doing the work. It runs shorter because it makes fewer round trips through internal review. The bill of materials has fewer people, at a comparable or lower blended rate, working fewer hours in aggregate. The saving is real. But the saving is secondary, and I want to be honest about that: a smaller, senior-led team with a named engineer at project week one still at the desk at project week fifty-two is a smaller perimeter than a rotating cast of associates from a training class. Fewer people with credentials. Fewer subcontractor chains. Fewer offshore hand-offs. Fewer places a token got provisioned in 2023 and never rotated. The economics matter. The perimeter matters more.
When the large integrators actually do fit
I am not going to pretend the specialist model is universally right, because it isn't, and a piece that pretended otherwise would deserve your skepticism. Large integrators deliver real value on the right engagements: large-scale system integrations with predictable scope, regulatory programs that need a big parallel bench, multi-year global change-management across dozens of geographies, and situations where the client's own priority is a single vendor to hold accountable across an enormous scope. On those, the model has genuine strengths.
It becomes questionable when the engagement is none of those things. When the work is a modern AI, Microsoft Fabric, Power BI, Copilot, or Purview program, the shape that matters is a small number of senior, named engineers with direct decision authority, deep platform specificity, and a governance orientation that treats your tenant as an inheritance rather than billable surface area. So the right question is never "big firm or small firm." It is: for this engagement, on this platform, in this regulatory posture, is the delivery model I chose the one that produces the smallest defensible perimeter and the fastest recoverable position in an incident? For the AI, Microsoft, and Fabric work EPC Group specializes in, the answer is often — not always, but often — a specialist with a smaller perimeter. We wrote the long-form version of that comparison at EPC Group vs. a Large Global Systems Integrator.
Where EPC Group stands
EPC Group is a Microsoft Solutions Partner holding all six designations — Modern Work, Business Applications, Digital & App Innovation, Data & AI, Infrastructure, and Security. G2 has recognized us as a Leader in business-intelligence consulting for six consecutive quarters. Our history includes a 102,000-user zero-downtime migration and more than one million users migrated across the arc of the firm. We serve Fortune 500, federal, healthcare, financial services, government, manufacturing, energy, education, retail, and technology organizations. We were founded in 1997 and are still led by a four-time Microsoft Press bestselling author who was on the original Project Tahoe SharePoint beta and the original Project Crescent Power BI beta, served as the eDiscovery lead for the Federal Reserve Bank of New York during the Troubled Asset Relief Program, and advised Vivek Kundra — the first Chief Information Officer of the United States — on the 25-point plan to reform federal IT.
Our delivery model is small, senior, named, and Microsoft-native. We do not scale by adding thousands of associates a year; we scale by adding specific senior engineers with specific tenants under their belt. Our clients get the same principal architects at project week fifty-two that they had at week one. We chose that shape deliberately, because it produces the smallest defensible perimeter for the enterprises we serve.
Three ways to work with us — none of which requires you to fire anyone
If you are reading this while engaged with a large integrator on an AI, Fabric, Power BI, or Copilot program, there are three ways to bring EPC Group in. The first is designed for exactly the situation most enterprises are actually in.
Path One — Validate. Our AI Deployment Second Opinion: a ten-business-day, fixed-fee, senior-led independent review of the architecture, governance, credential handling, tenant boundaries, and delivery quality of your current engagement. Fifteen thousand dollars, credited toward any remediation commissioned within ninety days. The output is a written assessment with prioritized findings, delivered by a named principal — not a rotating associate. Start the conversation here.
Path Two — Remediate. For the workstreams the Second Opinion flags, we scope and execute the fix while your incumbent continues on the balance of the program. Common workstreams include Power BI data readiness for AI, Microsoft Fabric and OneLake governance, Microsoft Purview / data governance posture, AI governance and agent-identity hardening, and Microsoft Copilot readiness certification.
Path Three — Selectively Transition. Where the findings warrant a partner change on cost, governance, delivery quality, or perimeter, we develop and execute a transition plan that migrates specific workstreams to us while preserving the incumbent where their model fits. This is not rip-and-replace. It is portfolio management. Most engagements begin at Path One; Path Two follows if warranted; Path Three follows only where the economics, documentation, risk, or delivery performance make the case on their own merits.
EPC Group practices referenced above
- AI Governance Consulting — frameworks, responsible-AI implementation, audit trails, model oversight, agent-identity hardening
- Microsoft Copilot — readiness assessment, deployment, Copilot Studio and agents, governance and guardrails
- Data Governance / Microsoft Purview — classification, sensitivity labels, DLP, retention, HIPAA/GDPR alignment
- Microsoft Fabric & OneLake — lakehouse architecture, capacity, lineage, Synapse-to-Fabric migration
- Power BI Consulting — data modeling, enterprise deployment, semantic-layer readiness for Copilot grounding
- Azure AI Consulting — Azure OpenAI, RAG architecture, content safety, HIPAA-compliant AI
- Virtual Chief AI Officer (vCAIO) — fractional executive accountability, board briefings, responsible-AI oversight
- AI Center of Excellence — standing operational body with charter, model risk management, and cadence
- Cloud Migration and Microsoft 365 Consulting
- EPC Group vs. a Large Global Systems Integrator — the specialist-versus-global comparison in full
If you are unsure which fits, the AI Deployment Second Opinion is the right starting point.
The 30 / 60 / 90 vendor-risk action plan
If your team is acting on this article this week, here is the sequence I would run.
- Days 1–14. Convene the audit committee. Put the ten questions on the table. Assign each to a named executive with a due date. Do not accept "we're looking into it" as a status.
- Days 15–30. Produce the named-person, credential, and subcontractor inventories for every external partner. If a partner delays or declines, escalate.
- Days 31–45. Sit down with your broker and General Counsel and read every AI-adjacent exclusion in your cyber, tech E&O, and D&O policies. If your broker can't summarize the AI-related exclusions in under two hours, get a new broker.
- Days 46–60. Commission an independent second-opinion review on the largest active engagement in your Microsoft, Azure, Fabric, Power BI, or Copilot portfolio. Fixed scope, fixed price, ten business days.
- Days 61–75. Based on the findings, scope the remediation workstreams for the next quarter — with your incumbent or an alternative — and assign named accountability.
- Days 76–90. The CIO writes a memo to the audit committee documenting partner exposure, insurance posture, governance-floor progress, and recommended changes for the next annual cycle. It becomes part of the corporate record.
Ninety days. One outcome: a firm that has moved from unknown exposure to documented exposure, and from documented exposure to a defensible plan.
A closing word on the word "isolated"
"Isolated" has a technical meaning in incident response. It means the incident was scoped, the scope was contained, the containment was verified, and no adjacent systems were reached. That is a strong claim, and it takes an independent forensic investigation to substantiate. It is not, in the technical sense, a word you use on the record within 72 hours of disclosure — unless the investigation is complete, the containment is third-party verified, and every downstream client has the attestation in hand.
I do not know whether the investigation behind this week's use of "isolated" is complete. It may be. It is also possible the word was chosen for its rhetorical properties rather than its technical ones. Both readings are available to a reasonable person. What I know is that every enterprise reading this weekend's coverage is entitled to ask its own partners the same question in the same words: is our engagement isolated in the technical sense, and can that isolation be attested to by a third party? If your partner won't answer, answers slowly, or hedges the language — you have your answer. That is the entire point of the ten questions.
Multiple models. One truth.
About the author
Errin O'Connor is the Founder & Chief AI Architect of EPC Group, a Microsoft Solutions Partner across all six designations. He is a four-time Microsoft Press bestselling author, an original member of the Project Tahoe SharePoint beta and Project Crescent Power BI beta programs, the eDiscovery lead for the Federal Reserve Bank of New York during the Troubled Asset Relief Program, and an advisor to Vivek Kundra, the first Chief Information Officer of the United States, on the 25-point plan to reform federal IT.
Contact: contact@epcgroup.net · (888) 381-9725 · Schedule a senior-architect conversation
Sources and verification
Reporting drawn from Eric Geller, Cybersecurity Dive (July 8, 2026); SecurityWeek; TechRadar; Cyber Daily; and News18. All threat-actor statements are identified as claims. The Accenture statement is quoted from public reporting. Rate-range statements are directional, drawn from the author's professional experience and corroborated by publicly available schedules including U.S. GSA Multiple Award Schedule filings.
