CheckMarx admits it was hit by major cyberattack that saw data leaked onto Dark Web
CheckMarx has confirmed it suffered a data breach following a supply chain attack on March 23, 2026, which led to stolen data being leaked on the dark web. The compromised data originated from its GitHub repository and may include source code and sensitive credentials. Investigations are ongoing, and the company has restricted access to the affected systems while assessing the full impact.
- ▪CheckMarx confirmed a data breach after its data appeared on the dark web in April 2026.
- ▪The breach stemmed from a supply chain attack on Trivy, which allowed threat actors to access CheckMarx's GitHub repository.
- ▪Stolen data potentially includes source code, API keys, database credentials, and employee information.
- ▪The hacking group Lapsus$ claimed responsibility for exfiltrating sensitive data and published it on their leak site.
- ▪CheckMarx has blocked access to the compromised repository and is investigating whether user data was impacted.
Opening excerpt (first ~120 words) tap to expand
Pro Security CheckMarx admits it was hit by major cyberattack that saw data leaked onto Dark Web News By Sead Fadilpašić published 28 April 2026 March 2026 attack did result in CheckMarx data theft When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. OpenVPN-protokollet - därför är det så bra (Image credit: Shutterstock) Copy link Facebook X Whatsapp Reddit Pinterest Flipboard Threads Email Share this article 0 Join the conversation Follow us Add us as a preferred source on Google Newsletter Subscribe to our newsletter CheckMarx confirms breach tied to a recent supply chain attackStolen data originated from its GitHub repository, with investigations still ongoingThreat actors later claimed to have exfiltrated source code and sensitive…
Excerpt limited to ~120 words for fair-use compliance. The full article is at TechRadar.
Discussion
0 commentsMore from TechRadar
