On Thursday, Red Hat disclosed that an unauthorized party gained access to its GitLab instance used for consulting engagements. The compromised data included project specifications, example code snippets, and internal communications related to consulting services. Red Hat emphasized this GitLab instance typically does not contain sensitive personal data and has not identified such data in the impacted files so far.
A cybercrime group named Crimson Collective claimed responsibility for the attack, alleging they exfiltrated over 28,000 repositories and published a directory listing on Telegram naming affected companies. The Centre for Cybersecurity Belgium classified the breach as high risk, warning that credentials, tokens, and network configuration data could have been exposed. Red Hat stated that other services and products remain uncompromised and assured customers that impacted consulting clients will be directly notified.
Despite not disclosing the incident detection date, Red Hat has removed unauthorized access, isolated the affected instance, and contacted authorities. Additional security hardening measures have been applied to prevent future breaches. This situation highlights ongoing risks to software consulting environments and the need for continuous monitoring and protection of cloud-based development platforms.
👉 Pročitaj original: CyberScoop
