Cybersecurity firm Trellix has introduced that it suffered a breach that enabled unauthorized entry to a “portion” of its supply code.
It mentioned it “not too long ago recognized” the compromise of its supply code repository and that it started working with “main forensic consultants” to resolve the matter instantly. It additionally mentioned it has notified legislation enforcement of the matter.
Trellix didn’t disclose the precise nature of the info that will have been accessed by the attackers. Nonetheless, it identified that there aren’t any indications that its supply code has been affected or exploited.
“Primarily based on our investigation to this point, we have now discovered no proof that our supply code launch or distribution course of was affected, or that our supply code has been exploited,” the corporate added.
The corporate didn’t share any particulars about who could also be behind the incident, and for the way lengthy the attackers had entry to its techniques. Trellix famous that extra data will probably be shared as applicable as soon as its investigation is full.
Owned by Symphony Know-how Group, Trellix was based in January 2022 following the merger of McAfee Enterprise and FireEye. Across the identical time, Mandiant, which was owned by FireEye, was acquired by Google in a deal price $5.4 billion.
When reached for remark, a spokesperson for Trellix acknowledged the breach and shared the identical official assertion posted on its web site.
(This can be a growing story. Please verify again for extra particulars.)
