The Verge

Federal investigators looking into breach at software code testing company Codecov

Federal officials are investigating a security breach at software auditing company Codecov, which apparently went undetected for months, Reuters reported. Codecov’s platform is used to test software ...
ZDNet

Rapid7 source code, alert data accessed in Codecov supply chain attack

Rapid7 has disclosed the compromise of customer data and partial source code due to the Codecov supply chain attack. On Thursday, the cybersecurity firm said it was one of the victims of the incident, ...
ZDNet

Codecov to retire the Bash script responsible for supply chain attack wave

Codecov has introduced a new uploader that relies on NodeJS to replace and remove a Bash script responsible for a recent supply chain attack. The San Francisco-based DevOps tool provider said in a ...
Bleeping Computer

HashiCorp is the latest victim of Codecov supply-chain attack

Open-source software tools and Vault maker HashiCorp has disclosed a security incident that occurred due to the recent Codecov attack. HashiCorp, a Codecov customer, has stated that the recent Codecov ...
SiliconANGLE

Sentry acquires code analysis startup Codecov to boost its app monitoring platform

Developer-focused application monitoring platform Sentry is beefing up its capabilities after closing today on the acquisition of a company called Codecov LLC, whose tools help DevOps teams to ship ...
Business Wire

CircleCI Adds More Enterprise-Level Capabilities to Growing CI/CD Ecosystem

SAN FRANCISCO--(BUSINESS WIRE)--Today CircleCI, the leading continuous integration and continuous delivery (CI/CD) platform, introduced new platform updates and partner integrations with Amazon Web ...
Bleeping Computer

Rapid7 source code, credentials accessed in Codecov supply-chain attack

US cybersecurity firm Rapid7 has disclosed that some source code repositories were accessed in a security incident linked to the supply-chain attack that recently impacted customers of the popular ...