The RansomHouse ransomware group has taken credit score for the current assault on the cybersecurity agency Trellix.
The Trellix hack got here to gentle this week when the corporate introduced on its web site that a part of its supply code repository had been breached.
“Based mostly on our investigation so far, we’ve discovered no proof that our supply code launch or distribution course of was affected, or that our supply code has been exploited,” the corporate acknowledged.
No different info has been shared by Trellix, nevertheless it has promised to launch further particulars after it completes its investigation.
The RansomHouse group named Trellix on its leak web site on Thursday. The hackers haven’t specified how a lot knowledge they stole from the cybersecurity firm, however have revealed a number of screenshots that seem to point out they’d entry to inside providers and administration dashboards.
The hackers haven’t made any claims relating to the kind of knowledge they’ve stolen from Trellix.
When the incident got here to gentle, information.killnetswitch reported that the timing of the assault recommended a possible connection to the current provide chain assault linked to the hacker teams TeamPCP and Lapsus$. This marketing campaign has impacted a number of cybersecurity companies, together with Checkmarx, Aqua Safety, and Bitwarden.
The connection has but to be confirmed, nevertheless it’s value noting that TeamPCP has reportedly partnered with ransomware teams.
information.killnetswitch has reached out to Trellix for remark and can replace this text if the corporate responds.
RansomHouse is an extortion group that emerged in 2022, primarily working as a ransomware-as-a-service (RaaS) supplier that targets massive enterprises. The group has been identified to encrypt victims’ information and steal useful knowledge to extend its possibilities of receiving a ransom fee.
RansomHouse’s Tor-based leak web site at present lists greater than 170 victims.
