Codecov says attackers had access to its network for a month and placed malware in one of its systems. The company says it learned from a customer on April 1 that attackers had extracted the credentials needed to access and modify the company’s Bash Uploader and other internal systems. An investigation determined the attackers routinely accessed the companys network for about a month. The incident may be a supply chain attack along the lines of the SolarWinds attack, which affected 18,000 of its customers.”]
Source: https://www.cuinfosecurity.com/attack-on-codecov-affects-customers-a-16420