Trellix Confirms Source Code Breach With Unauthorized Repository Access
Cybersecurity company Trellix has confirmed a breach of its source code repository, prompting an investigation by forensic experts and law enforcement.
Cybersecurity firm Trellix has confirmed that it suffered a security breach involving unauthorized access to a portion of its source code repository. The company stated that it recently identified the compromise and has initiated a response plan involving leading forensic experts to investigate the scope and impact of the incident.
While Trellix did not disclose the specific nature of the stolen data or the identity of the attackers, the company has notified law enforcement authorities. The breach highlights the ongoing risk to software supply chains, as unauthorized access to source code can potentially lead to the discovery of vulnerabilities or the injection of malicious code into future product updates.
Trellix is currently working to resolve the matter and secure its development environment. Customers and stakeholders should monitor official communications from the company for further updates regarding the security of their products and services. [The Hacker News]