Red Hat Breach

Cyber Security News by CyberSum.net

Published on October 5, 2025 at 09:00 PM

9 sources

Red Hat has confirmed that its managed repository on the GitLab platform was compromised in a cyberattack, with attackers exfiltrating 570 GB of compressed data from 28,000 internal repositories. The stolen data includes approximately 800 Customer Engagement Reports, which contain sensitive information about customers' networks and platforms. The attackers, who call themselves the Crimson Collective, claim to have stolen the data and are threatening to release it unless a ransom is paid. Red Hat has initiated remediation steps and is investigating the incident, but has not confirmed the attackers' claims. The company has assured customers that the incident is limited to its consulting division and does not impact its other products or supply chain.

Also Read

Cisco SNMP Vulnerability Exploited in Operation Zero Disco

Cybersecurity researchers at Trend Micro have uncovered an active attack campaign called Operation Zero Disco, which exploits a critical vulnerability in Cisco’s SNMP implementation. The vulnerability, tracked as CVE-2025-20352, allows attackers to execute remote code and deploy sophisticated Linux rootkits on vulnerable network devices. The campaign primarily targets older Cisco switch models, enabling persistent unauthorized access and evasion of detection. Attackers use spoofed IP addresses and MAC email addresses to obscure their activities, and the rootkit installs hooks into the IOSd memory space, creating fileless backdoor components that disappear after system reboots but remain active during normal operation.

By Cyber Security News by CyberSum.netOctober 16, 2025 at 03:00 PM