Red Hat has confirmed that there was a security incident after a hacker group claimed to have stolen data. In their announcements, the hackers said they stole data from GitHub—but the data, indeed, was stolen from one of Red Hat’s GitLab systems in order to conduct consulting.
Red Hat acknowledged the breach but did not specifically validate the claims of the hackers. They said they acted quickly—and are confident that this did not impact their products and software supply chain. Which is great news, given the number of companies around the world using Red Hat software.
The hacker even claimed they hacked a Nintendo web page for fun. Classic hacker.
What Happened
The hacker group, Crimson Collective, claimed they stole 570GB of data across 28,000 repositories. They claimed to have about 800 Customer Engagement Reports (CERs) as well—these reports could contain sensitive information, including system information, login tokens, and configurations. In other words, stuff you don’t want to let other people see.Red Hat acknowledged the breach but did not specifically validate the claims of the hackers. They said they acted quickly—and are confident that this did not impact their products and software supply chain. Which is great news, given the number of companies around the world using Red Hat software.
Why This is Serious
If the CERs were indeed stolen, that would be a concern for the customers included in the reports. Some of these reports allegedly contain Bank of America, AT&T, Walmart, and U.S. government agencies. Hackers could exploit this information to exploit your organization and conduct follow-up attacks.Actions of the Hacker(s)
Not only did the hacker steal data, they also attempted to extort Red Hat. They approached the company with a list of demands but received only a boilerplate security response. It was to show they could prove otherwise, the hacker(s) posted a list of files they claimed to have taken from Red Hat on Telegram.The hacker even claimed they hacked a Nintendo web page for fun. Classic hacker.