Get a Pentest and security assessment of your IT network.

News

Threat Actors Stole Source Code from SonarQube Instances of US Government Agencies, Says FBI

The FBI issues a warning of a successful intrusion into some US government agencies and private businesses by unnamed threat actors. Unidentified threat actors used SonarQube configuration vulnerabilities in their attacks. The FBI also published a list of possible mitigations to help protect entities using the open-source platform. This activity is similar to a previous data leak in July 2020, in which an identified cyber actor exfiltrated proprietary source code from enterprises through poorly secured SonarZube instances and published the exfilted source code on a self-hosted public repository.”]

Source: https://www.bitdefender.com/blog/hotforsecurity/threat-actors-stole-source-code-from-sonarqube-instances-of-us-government-agencies-says-fbi/

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Botnet authors use Evernote account as C&C Server

News

Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2