Supply chain
[SC] Supply Chain
GitHub And Bitbucket Third-Party Breach (September 2019)
Primary Source ↗Incident Details
SC Media UK. An error occurred trying to play the stream. Please reload the page and try again. Registering with SC Media is 100% free. Join tens of thousands of cybersecurity leaders today and gain access to the latest analysis shaping the global infosec agenda. Third-party company: CirclCI.
Technical Details
- Initial Attack Vector
- Compromise of third-party service provider / vendor relationship
- Vendor / Product
- CirclCI
- Supply Chain Attack
- ✅ Confirmed third-party / vendor compromise
Timeline
- 2019-09-01 Breach occurred
- 2019-09-01 Publicly disclosed