"On April 20, 2026, we detected unauthorized access to a subset of our GitHub repositories. Our incident response team quickly terminated the unauthorized activity and resolved the issue."
"According to SailPoint, the repositories were compromised through a vulnerability in a third-party application. The underlying issue has been addressed, it said."
"SailPoint said its investigation into the incident, conducted in collaboration with a third-party cybersecurity firm, has found no evidence that "customer data in our production or staging environments were accessed or that our services were interrupted.""
"The company told the SEC that it had directly notified customers if their information was stored in the accessed repositories. "[We] informed our customers generally that no additional actions are required at this time," SailPoint's SEC filing reads."
SailPoint disclosed a cybersecurity incident involving its GitHub repositories. The company detected unauthorized access on April 20, 2026, and its incident response team terminated the unauthorized activity and resolved the issue immediately. The repositories were compromised through a vulnerability in a third-party application, and the underlying issue has been addressed. SailPoint investigated the incident with a third-party cybersecurity firm and found no evidence that customer data in production or staging environments was accessed or that services were interrupted. The company notified customers if their information was stored in the accessed repositories and informed them that no additional actions were required. SailPoint did not provide further details on the attack, data types, or the threat actor.
#identity-management #cybersecurity-incident #github-repositories #third-party-vulnerability #customer-data-protection
Read at SecurityWeek
Unable to calculate read time
Collection
[
|
...
]