"Current evidence indicates that this data originated from Checkmarx's GitHub repositories, and that access to those repositories was facilitated through the initial supply chain attack of March 23, 2023."
"The Trivy attack was carried out by a group calling itself TeamPCP. The group is among the most successful access-broker operations, a class of hackers that smashes and grabs credentials from victims and then sells them to other hackers."
"You will see this same thread throughout these compromises. Attackers are treating security tools as both a target and a delivery mechanism."
Checkmarx's GitHub repositories were breached in a supply chain attack on March 23, 2023, leading to data leaks. The attack also affected Bitwarden, linked through shared infrastructure. TeamPCP, the group behind the attack, specializes in stealing credentials and selling them. They sold access to Lapsu$, a teenage ransomware group. The incidents illustrate the cascading effects of breaches, with potential new attacks on affected companies' customers. Security organizations are prime targets due to their access to sensitive data and widespread use.
Read at Ars Technica
Unable to calculate read time
Collection
[
|
...
]