Atlassian, Procter & Gamble, GoDaddy, The Washington Post Third-Party Breach (April 2021)

2021-04-01 [vendor] CodeCov

Primary Source ↗

Incident Details

US investigators probing breach at code testing vendor. . . LOG INSUBSCRIBE. Third-party company: CodeCov.

Technical Details

Initial Attack Vector: Compromise of third-party service provider / vendor relationship
Vendor / Product: CodeCov
Supply Chain Attack: ✅ Confirmed third-party / vendor compromise

Timeline

2021-04-01 Breach occurred
2021-04-01 Publicly disclosed