Red Hat consulting data breach
Summary
Hide ▲
Show ▼
Red Hat confirmed a security incident affecting its consulting business. The Crimson Collective extortion group claims to have breached Red Hat's private GitHub repositories, stealing nearly 570GB of data across 28,000 internal projects. The stolen data allegedly includes 800 Customer Engagement Reports (CERs), which contain sensitive information about customer networks and platforms. The breach occurred approximately two weeks prior to the announcement. The hackers claim to have accessed downstream customer infrastructure using authentication tokens and other private information found in the stolen data. The affected organizations span various sectors, including finance, healthcare, government, and telecommunications. Red Hat has initiated remediation steps and stated that the security issue does not impact its other services or products.
Timeline
-
02.10.2025 09:15 1 articles · 8h ago
Red Hat confirms security incident affecting consulting business
Red Hat confirmed a security incident related to its consulting business. The Crimson Collective extortion group claims to have breached Red Hat's private GitHub repositories, stealing nearly 570GB of data across 28,000 internal projects. The stolen data allegedly includes 800 Customer Engagement Reports (CERs), which contain sensitive information about customer networks and platforms. The breach occurred approximately two weeks prior to the announcement. The hackers claim to have accessed downstream customer infrastructure using authentication tokens and other private information found in the stolen data. The affected organizations span various sectors, including finance, healthcare, government, and telecommunications.
Show sources
- Red Hat confirms security incident after hackers claim GitHub breach — www.bleepingcomputer.com — 02.10.2025 09:15
Information Snippets
-
The Crimson Collective claims to have breached Red Hat's private GitHub repositories, stealing nearly 570GB of data across 28,000 internal projects.
First reported: 02.10.2025 09:151 source, 1 articleShow sources
- Red Hat confirms security incident after hackers claim GitHub breach — www.bleepingcomputer.com — 02.10.2025 09:15
-
The stolen data allegedly includes 800 Customer Engagement Reports (CERs), which contain sensitive information about customer networks and platforms.
First reported: 02.10.2025 09:151 source, 1 articleShow sources
- Red Hat confirms security incident after hackers claim GitHub breach — www.bleepingcomputer.com — 02.10.2025 09:15
-
Red Hat confirmed a security incident related to its consulting business but did not verify the attacker's claims regarding the stolen GitHub repositories and customer CERs.
First reported: 02.10.2025 09:151 source, 1 articleShow sources
- Red Hat confirms security incident after hackers claim GitHub breach — www.bleepingcomputer.com — 02.10.2025 09:15
-
The breach occurred approximately two weeks prior to the announcement.
First reported: 02.10.2025 09:151 source, 1 articleShow sources
- Red Hat confirms security incident after hackers claim GitHub breach — www.bleepingcomputer.com — 02.10.2025 09:15
-
The hackers claim to have accessed downstream customer infrastructure using authentication tokens and other private information found in the stolen data.
First reported: 02.10.2025 09:151 source, 1 articleShow sources
- Red Hat confirms security incident after hackers claim GitHub breach — www.bleepingcomputer.com — 02.10.2025 09:15
-
The affected organizations span various sectors, including finance, healthcare, government, and telecommunications.
First reported: 02.10.2025 09:151 source, 1 articleShow sources
- Red Hat confirms security incident after hackers claim GitHub breach — www.bleepingcomputer.com — 02.10.2025 09:15
-
Red Hat has initiated remediation steps and stated that the security issue does not impact its other services or products.
First reported: 02.10.2025 09:151 source, 1 articleShow sources
- Red Hat confirms security incident after hackers claim GitHub breach — www.bleepingcomputer.com — 02.10.2025 09:15