Bleeping Computer

Rapid7 source code, credentials accessed in Codecov supply-chain attack

US cybersecurity firm Rapid7 has disclosed that some source code repositories were accessed in a security incident linked to the supply-chain attack that recently impacted customers of the popular ...
Bleeping Computer

Codecov starts notifying customers affected by supply-chain attack

As of a few hours ago, Codecov has started notifying the maintainers of software repositories affected by the recent supply-chain attack. These notifications, delivered via both email and the Codecov ...
adtmag.com

App Monitoring Toolmaker Sentry Acquires Code Coverage Provider Codecov

Software development teams are under a lot of pressure these days to ship code faster— secure, reliable code. Admittedly, "fast but good" is an age-old challenge for devs of nearly every stripe, but ...
Dark Reading

Attackers Compromised Code-Checking Vendor's Tool for Two Months

In a software supply-chain attack reminiscent of the SolarWinds compromise, unknown attackers used a vulnerable tool published by code checking firm Codecov for a little over two months to collect ...
Infosecurity-magazine.com

Codecov Supply Chain Attack May Hit Thousands: Report

Experts have urged organizations to reassess cyber-risk in their supply chains as it emerged that hundreds of customers of a software auditing company had their networks accessed illegally. Originally ...
Business Wire

Sentry Acquires Codecov

SAN FRANCISCO--(BUSINESS WIRE)--Sentry, the leader in developer-first application monitoring, today announced it has acquired Codecov, the leading dedicated code coverage reporting solution, providing ...
ZDNet

Rapid7 source code, alert data accessed in Codecov supply chain attack

On Thursday, the cybersecurity firm said it was one of the victims of the incident, in which an attacker obtained access to the Codecov Bash uploader script. The cyberattack against Codecov took place ...