Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Trellix hit by network compromise

Incident
First reported
Last updated
Happening score
H score 13
2 unique sources, 2 articles

Summary

Hide ▲

Trellix confirmed a breach that gave attackers unauthorized access to a portion of its source code, creating potential security and intellectual-property risk. The company said it recently identified the compromise of its source code repository and moved to work with leading forensic experts. Trellix also notified law enforcement and said there is no evidence yet that its source code release or distribution process was affected or that the code was exploited.

Related Happenings

Rogue Checkmarx Jenkins AST plugin release on Jenkins Marketplace

Security Tool/Service
First: 12.05.2026 01:03 Last: 12.05.2026 01:03 Sources 1

About this happening: A **rogue 2026.5.09 release** of the **Checkmarx Jenkins AST plugin** was uploaded to **repo.jenkins-ci.org**, undermining trust in a security-scanning component used in **Jenkins...

Open Happening

Checkmarx hit by network compromise

Incident
First: 27.04.2026 17:19 Last: 27.04.2026 17:19 Sources 1

About this happening: **Checkmarx** disclosed a **breach** tied to the **March 23, 2026 Trivy supply-chain attack**, and the compromise matters because attackers used it to tamper with **GitHub Actions...

Open Happening

Developer environments using KICS data exposed after Checkmarx breach

Data Leak
First: 23.04.2026 19:05 Last: 23.04.2026 19:05 Sources 1

About this happening: The compromised **Checkmarx KICS** toolchain was used to exfiltrate **GitHub tokens**, **cloud credentials**, and other secrets from developer environments, creating immediate acc...

Open Happening

Checkmarx/kics Docker Hub repository hit by network compromise

Incident
First: 22.04.2026 20:55 Last: 22.04.2026 20:55 Sources 1

About this happening: **Checkmarx's checkmarx/kics Docker Hub repository** suffered a **supply-chain compromise** that could expose **secrets** from infrastructure-as-code scans. **Unknown threat actor...

Open Happening

TeamPCP supply-chain credential-exploitation campaign

Campaign
First: 31.03.2026 15:15 Last: 31.03.2026 15:15 Sources 1

About this happening: The **TeamPCP** campaign now includes a confirmed **GitHub** compromise tied to a poisoned **Nx Console VS Code extension**. GitHub said the breach of its internal repositories ca...

Latest development: 12.05.2026 01:03

TeamPCP compromised the Checkmarx Jenkins AST plugin by publishing a rogue version to repo.jenkins-ci.org on May 9, 2026, outside the official release pipeline. The malicious upload was tied to access to Checkmarx GitHub repositories and was used to deliver credential-stealing malware and malicious code to the affected organization.

Open Happening

Timeline

  1. 08.05.2026 16:23 1 articles · 19d ago

    RansomHouse claims Trellix source code breach

    Attribution Update

    RansomHouse claimed responsibility for the Trellix source code repository breach, posted screenshots from Trellix's appliance management system as proof, and said the intrusion occurred on April 17 and resulted in data encryption.

    Show sources
    Open in new tab
  2. 02.05.2026 09:41 1 articles · 25d ago

    Trellix discloses source code repository compromise

    Initial Disclosure

    Trellix said it recently identified a compromise of its source code repository that enabled unauthorized access to a portion of its source code, engaged leading forensic experts, and notified law enforcement. The company said there is no evidence that its source code release or distribution process was affected or that its source code was exploited, and it did not disclose attribution or dwell time.

    Show sources
    Open in new tab