Red Hat Confirms Data Breach Affecting GitHub Repos
Red Hat, a prominent supplier of enterprise Linux and open-source solutions, has affirmed a data breach impacting its private GitHub repositories. The cybercriminal group, dubbed the Crimson Collective, claims responsibility, asserting they've pilfered 570GB of data, including sensitive customer engagement reports and projects.
The Crimson Collective exhibited proof of the breach on a Telegram channel, posting a file tree, a list of 800 compromised Customer Engagement Reports (CERs), and screenshots. These CERs contain sensitive network data, such as infrastructure details, configurations, and tokens, of major organizations like Citi, Verizon, Siemens, and the U.S. Senate.
Red Hat has recognized the incident but has not confirmed the claims of the Crimson Collective. The company has stated that the breach does not affect its other services or products, and its supply chain remains secure.
Red Hat is probing the breach, and it's uncertain what the Crimson Collective plans to do with the stolen data. The incident serves as a caution of the potential hazards associated with data stored on third-party platforms.
Read also:
- Web3 gaming platform, Pixelverse, debuts on Base and Farcaster networks
- Amazon customer duped over Nvidia RTX 5070 Ti purchase: shipped item replaced with suspicious white powder; PC hardware fan deceived, discovers salt instead of GPU core days after receiving defective RTX 5090.
- Infiltration of Estonian airspace by Russian military aircraft
- Cyber aggression intensifies by China-backed TA415 group, targeting Taiwan's semiconductor production and supply networks
