Trellix has disclosed unauthorized access to a portion of its source code repository.
However, it did not specify which portion of its source code was accessed, nor did it provide many further details about the incident.
“Upon learning of this matter, we immediately began working with leading forensic experts to resolve it. We have also notified law enforcement,” the company said in a statement.
Based on its investigation to date, Trellix added that is has found no evidence that its source code was released, its distribution process was affected, or that its source code has been exploited.
“As part of our commitment to our broader security community, we intend to share further details as appropriate once our investigation is complete.”
Ben Ronallo, Director of Security Operations at Black Duck, comments: “Based on the information that’s available as of now, my assumption is that this is more fallout from Trivy, LiteLLM, or another prior compromise. This could even go as far back as Salesloft Drift, where I don’t know that we’ve seen the true fallout from that yet.”
He says cybersecurity companies are under the microscope. “Even with the tightest defenses, all it takes is one weak link to give attackers the foothold they need to get further into the organisation.”
As the mean time to exploit continues shrinking, Ronallo says organisations are preparing for a “Mythos future” when realistically that future is likely already here but not necessarily from Mythos.
“All organisations, regardless of industry, should be seriously reviewing their attack surface and taking actions to measurably reduce their risk in the next 30 to 90 days, with a longer term plan to continue that risk reduction over the next 12-18 months”.
Information Security Buzz News Editor
Kirsten Doyle has been in the technology journalism and editing space for nearly 24 years, during which time she has developed a great love for all aspects of technology, as well as words themselves. Her experience spans B2B tech, with a lot of focus on cybersecurity, cloud, enterprise, digital transformation, and data centre. Her specialties are in news, thought leadership, features, white papers, and PR writing, and she is an experienced editor for both print and online publications.
The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.