iTWire Wednesday, 21 April 2021 11:21 Software auditing tool maker Codecov breached, upload script modified Featured Pixabay
Software auditing tool maker Codecov has had its systems breached and the attackers are now reportedly using its bash uploader script to gain access to hundreds of its customers networks.
The attackers were able to modify the upload script and gained access to do this because to a mistake in its creation of a Docker image.
Codecov said in
a statement issued on 15 April that it became aware of the incident on 1 April, but there had been unauthorised entry to its systems from 31 January onwards.
Reuters
By Juha Saarinen on Apr 20, 2021 12:14PM
Scores of projects potentially affected by supply chain attack.
A malicious alteration to a shell script lay undetected since January this year at software testing coverage report provider Codecov, sparking fears of another significant supply chain attack.
Forensic analysis shows that an unknown threat actor exploited an error in Codecov s Docker container image creation process, and gained access to the credential that allowed the modification to the company s Bash Uploader script.
Codecov said a Google Cloud Storage key was accessed starting January 31 this year, and not secured until April 1 US time.
The script is normally used to upload coverage reports to Codecov, but it was altered to transmit the UNIX shell environment, which can be used to store variables.
Will the CodeCov breach become the next big software supply chain hack? scmagazine.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from scmagazine.com Daily Mail and Mail on Sunday newspapers.