The breach inside Codecov which took place in January remained undetected for a long time. It was first detected in April. Codecov, an auditing company for software is the subject of a federal investigation due to the security breach which took place in January. The fishy part being the breach remained undetected for several months, according to a report by Reuters. The platform was used for testing codes of software for vulnerabilities. It has a total of 29,000 clients including Atlassian, Washington Post, GoDaddy, and others.
What Led To The Security Breach In Codecov?
The statement which was posted on the website of the company, Jarrod Engelberg, CEO, Codecov acknowledged the situation and the reason why a federal investigation is going on. He stated that somebody gaining access to the company’s Bash script has modified it unfortunately without the permission of the company.
Engelberg wrote that the investigation of the company has revealed that starting 31st January 2021, the company witnessed an unauthorized and periodic alteration in its Bash script. This was done by a 3rd party which helped them to export the information stored inside the continuous integration environments of the users. Thereby the information was sent to another 3rd party server outside the infrastructure of Codecov.
However, the scale of the breach inside the company remains unclear. It has been noted by Reuters that this breach might have a far-reaching and similar impact to the SolarWinds hack which happened in late 2020. That breach happened because hackers collaborated with the government of Russia compromised the management software and monitoring of SolarWinds.The breach inside SolarWinds affected roughly 250 entities including Belkin, Cisco, and Nvidia. Homeland Security, The US Energy, State, Commerce, and Treasury were also affected.