- Crimson Collective violated Red Hat’s Github, stealing 570gb of 28,000 internal projects
- Computer pirates claim to have stolen 800 client participation records with confidential infrastructure data
- Red Hat confirmed a violation, but denied the evidence of stolen CERS or the impact on other services
Red Hat has confirmed that it suffers a potentially serious violation, but the company said it could not verify the claims of computer pirates of the client stolen secrets.
A piracy group called Crimson Collective claims to have accessed Red Hat’s private repositories, and exfiltrated approximately 570 GB of different files of 28,000 internal projects.
Among the files are 800 client participation records (CER): internal consulting documents that Red Hat created to admit business clients, and generally include detailed infrastructure information (network architecture, system configuration, etc.), authentication and access data (credentials, access tokens and more), and operational ideas (recommendations, problem solving solutions and similar).
This makes them extremely valuable, since they can easily take advantage of follow -up attacks.
Great names
In a shared statement with BleepingcomputerRed Hat confirmed the violation, but could not verify the statements of the stolen CER files.
At the same time, the piracy group told the publication that the attack occurred approximately two weeks ago, and that the database contained authentication tokens, complete database URI and other private information that can supposedly be used to access the clients downstream.
They called at least a dozen heavy hitters, including Bank of America, T-Mobile, AT&T, Fidelity, Mayo Clinic, Walmart, the Surfare War Center of the Naval Surfuerza of the US Navy. UU., The Federal Aviation Administration and many more.
“Red Hat is aware of the reports on a security incident related to our consulting business and we have initiated the necessary remediation steps,” said Red Hat.
“The safety and integrity of our systems and the data that they entrust us are our top priority. At this time, we have no reason to believe that the security problem affects any of our other services or products of Red Hat and trusts the integrity of our software supply chain.”
Crimson Collective tried to extort Red Hat for money, but finally failed, since the company continued to respond with generic and planted responses, he said.
