An extortion group called Crimson Collective claims to have stolen 570GB of data from Red Hatβs private GitHub repositories, including sensitive customer information. Red Hat has acknowledged a security incident but has not confirmed the extent of the stolen data, which has been posted publicly by the hackers. #CrimsonCollective #RedHat #CustomerEngagementReports
Keypoints
- The Crimson Collective claims to have breached Red Hatβs private GitHub repositories and stolen 570GB of data.
- The stolen data reportedly includes customer engagement reports containing sensitive infrastructure and authentication details.
- Red Hat confirmed a security incident related to its consulting business but has not verified the hackersβ claims.
- The hackers published a directory of stolen repositories and customer reports, including organizations like Bank of America, Mayo Clinic, and U.S. Navy.
- The group attempted to contact Red Hat for extortion but received only a templated security response, and they also claimed responsibility for a recent Nintendo page defacement.