ANALYSIS

The Consultant as an Exposure Surface

What attackers can infer when third parties become visibly connected to your organisation

A consultant can expand your attack surface before they receive a login, join a call, or connect a device. The technical access they are eventually granted is only one part of the risk. Their presence also reveals the relationships, projects, systems, timing, executives, vendors, and internal priorities that become visible the moment a third party is seen to be working with you.

This is the part of third-party risk that sits outside the assets a company owns and can see, which is precisely why it is rarely reviewed. Attack-surface management maps devices, domains, and accounts under the organisation's control. A consultant relationship lives at the edge of that map, and often just beyond it.

The trend is not marginal. The Verizon 2025 Data Breach Investigations Report found that the share of breaches involving a third party doubled year on year, from 15% to 30%. Most of that discussion focuses on technical failures: partner credential leaks, misconfigured shared environments, downstream software compromise. Those matter, and they are your IT team's responsibility. This piece is about something earlier and quieter, the exposure created simply by the relationship being visible.

This matters most before sensitive engagements: restructuring, finance transformation, legal disputes, mergers and acquisitions, executive advisory work, ERP, CRM, or security implementations, and board-level consulting. Those are the moments when a new external relationship carries the most inference value to an attacker.

Third-party risk starts before the network

When a consultant is brought in, the security tasks are usually treated as administrative: send the laptop instructions, create an account, grant access, share documents, and remove access later. Your IT team owns device posture, network segmentation, access control, and logging, and those controls are real and necessary.

But they all engage after the relationship already exists and is already observable. Before any of them apply, the connection between the third party and the organisation has become part of the public record: an announcement, a case study, a LinkedIn update, a shared calendar invitation, a new name appearing in the same contexts as your staff.

PI's concern is that earlier layer. Not what a consultant can reach once inside the network, but what an attacker can learn from the outside about the fact that they are there at all.

What changes when a third party joins the environment

A new engagement changes an organisation's external signature in ways that are individually minor and collectively revealing:

  • New people become connected to the company in public view.
  • New domains and email patterns appear in correspondence and metadata.
  • New calendar and event traces emerge around meetings and workshops.
  • New relationships form on professional networks between the consultant and named staff.
  • New procurement and vendor signals surface through announcements or filings.
  • New public documents appear: job posts, case studies, press releases, and slide decks.
  • New language enters circulation, the project's terminology, that an attacker can reuse to sound authentic.

None of these is a breach. Each is a data point. Assembled, they describe an organisation in transition, and organisations in transition are easier to social-engineer.

The exposure here is not the consultant. It is the visible relationship: who is working together, when, on what, and under which trusted name.

The consultant as a reconnaissance bridge

A third party is a bridge into understanding how an organisation actually works. From the outside, an attacker studying a consultant relationship can often infer:

  • Who reports to whom, from the people the consultant is publicly connected to.
  • Which project is active, from the consultant's stated specialism and recent work.
  • Which system is being implemented or replaced, from the vendors and tools now in the picture.
  • Which executive or department is under pressure, from where the engagement is focused.
  • Which vendor or partner is trusted, and therefore whose name carries weight.
  • Which communication style feels normal, from public materials and shared terminology.

This is the same reconnaissance that precedes targeted fraud, assembled from a relationship rather than from the target directly. It is why third-party risk and supply-chain risk are not the same problem, a distinction we set out in third-party risk vs supply chain attack: here the direction of trust runs through a visibly connected party, not through the software you install.

What attackers can see about the consultant

The consultant is also an exposure surface in their own right. In general terms, and without profiling any specific individual, the publicly discoverable material around an external adviser can include their professional history, the client logos or case studies they advertise, conference talks, portfolios, personal domains, and old documents that never came down. It can extend to exposed email addresses, credentials surfaced in past breaches, reused usernames across services, and a professional social graph that now includes your staff.

This does not depend on any one consultant being careless; it is structural. A trusted outsider carries their own footprint, and once that footprint is linked to you, its weakest parts become yours to worry about. Where a consultant's credentials already sit in breach or stealer-log data, the relationship gives an adversary a higher-value context in which to use them, which is where credential-exposure monitoring becomes relevant; we examined the individual side of that in the attack surface you don't own and the aggregation risk when a whole firm is exposed in the credential risk hidden in consulting relationships.

What attackers can infer about the client

Read in the other direction, the same signals let an attacker infer things about you that you did not choose to publish. The visible material about a third party maps directly onto conclusions about the organisation that hired them:

Visible about the consultantWhat it lets an attacker infer about you
Client logos, case studies, testimonialsA transformation or advisory project is underway
Stated specialism and recent engagementsWhich system or function is being changed
Public connections to your named staffReporting lines and who is involved
Conference talks, portfolios, old documentsThe project's language, priorities, and timing
Exposed emails, breached or reused credentialsAn identity worth watching, now linked to you

Each inference is a foothold: that a transformation project is underway, that a finance, HR, CRM, ERP, security, or legal system is being changed, that a merger, restructuring, audit, or compliance deadline may be active, which specific employees are involved, and that a payment, procurement, onboarding, or document-sharing workflow now exists and is in regular use.

How this becomes a pretext

Inference becomes attack when the visible context is turned into a believable request. A relationship that is public knowledge supports pretexts that a cold approach never could:

  • A fake consultant invoice, arriving when invoices are expected.
  • A fake document-share request, matching a workflow already in use.
  • A fake calendar reschedule for a meeting the attacker knows is happening.
  • A fake onboarding portal for access the target is expecting to be asked for.
  • A fake vendor security questionnaire, using the language of the real project.
  • A fake "urgent project access" request during a known deadline.
  • A fake payment-change instruction, or a message that appears to come from the consultant's executive assistant.

Every one of these works better because the relationship is real and visible. The attacker is not inventing a scenario; they are stepping into one that already exists.

A visible consultant relationship gives an attacker a ready-made story. A Corporate Audit maps what is publicly discoverable about the engagement, the people, and the pretexts it enables.

Talk to an Analyst

The sleeping-adversary problem, framed as exposure

There is a version of this concern that overstates itself as a claim about laptops and malware. Framed as exposure logic, it is more precise and more useful.

If a consultant's identity, email account, or credentials are already compromised, the client relationship gives the adversary a higher-value context in which to act. The problem is not primarily the device. It is that the third party may already be an observed identity, someone an attacker is watching, whose new connection to you turns a low-value compromise into an opportunity aimed at your organisation.

That reframing keeps the point where PI can actually speak to it: not the state of the endpoint, which is your IT team's domain, but the exposure of the identity, which is discoverable from outside.

What an exposure review should check before sensitive work begins

Before a sensitive engagement, an exposure-led review looks at what is externally visible and weaponisable, not at the internal controls. In practice that means examining:

  1. The consultant's and their firm's public footprint.
  2. Exposed email addresses and breached or leaked credentials tied to them.
  3. Public client references and case studies that reveal the relationship.
  4. The professional relationship map linking the consultant to your staff.
  5. Public clues about the project's nature and timing.
  6. Lookalike-domain and email-pattern exposure for both parties.
  7. Vendor and supplier naming patterns an attacker could reuse.
  8. Document-sharing and file-transfer exposure around the engagement.
  9. Overlap with executive or finance-team exposure.
  10. Data-broker and people-search exposure for the key individuals involved.

The output is a picture, ranked and evidence-led, of what an attacker could discover and build on before the work begins.

To be clear about the boundaries, most of the controls people associate with third-party risk sit outside this review, and outside PI's remit:

OwnerResponsibility
ITAccess control, network segmentation, device posture, logging, offboarding
Legal & procurementContract terms, data-processing agreements, vendor due diligence
PIExternal visibility: what an attacker can discover about the relationship before trust is granted

These are complementary. The technical and contractual controls decide what a third party can do once trusted. The exposure review decides how much an attacker can learn before that trust is even granted.

How a Corporate Audit supports this

A Corporate Audit maps the exposed third-party relationships, identifies the public project and vendor signals around an engagement, and reviews executive, finance-team, and consultant exposure together. It checks credential-leak indicators, assesses the pretext opportunities that visible context creates, and produces a report that security, legal, and leadership can act on. Our approach to that work is set out in the methodology: evidence-led, category-level, and grounded in what is genuinely discoverable, not speculation.

The risk is not that every consultant is unsafe. The risk is that every trusted relationship creates context an attacker can reuse. A third party does not need to be inside your network to become useful to an attacker. They only need to be visibly trusted by you. The first control, then, is visibility: knowing what the relationship reveals before an attacker does.

Before a sensitive engagement, PI Solutions can map what is publicly visible about the third party, the project, the executives involved, and the pretexts an attacker could build from that relationship.

Request a Corporate Audit

Share this briefing

If this was useful, sharing it helps others protect themselves. It also helps keep the intelligence briefings free.