- Crimson Collective breached Red Hat’s GitHub stealing 570 GB from 28,000 internal projects
- Hackers claim to have stolen 800 Customer Raises Registers with Sensitive Infrastructure Data
- Red hat confirmed violation but refused proof of stolen cers or influence on other services
Red Hat confirmed to suffer a data violation but did not confirm hacker claims of stolen customer secrets.
Earlier this week, news that a hacking group called Crimson Collective broke access to Red Hat’s private GitHub stocks, and exiled about 570 GB of different files from 28,000 internal projects. Among the files were also 800 customer law records (CER).
These items are internal consulting documents that Red Hat created to support company clients, and typically includes detailed infrastructure information (network architecture, system configuration, etc.), authentication and access data (credentials, access tokens and more) and operational insight (recommendations, notes and similar notes).
This makes them extremely valuable as they can be easily utilized in follow -up attacks.
Big names
In a statement shared with Bleeping computerRed Hat confirmed the violation but could not verify the allegations of stolen CER files. At the same time, the hacking group told the publication that the attack happened for approx. Two weeks ago, and that the database contained the approval tokens, full database URIs and other private information that can be used to access downstream customers.
They named at least a dozen heavy meetings, including Bank of America, T-Mobile, AT&T, Fidelity, Mayo Clinic, Walmart, US Navy’s Naval Surface Warfare Center, Federal Aviation Administration and many more.
“Red Hat is aware of reports of a security incident related to our consultancy, and we have initiated the necessary remedy steps,” Red Hat told Bleeping computer. “The security and integrity of our systems and the data entrusted to us is our highest priority. At this point, we have no reason to believe that the security question affects any of our other Red Hat services or products and is very confident in the integrity of our software supply chain.”
Crimson Collective tried to put Press Red Hat for money, but eventually failed as the company continued to respond with generic, templated answers, they said.
Via Bleeping computer
