The company told the SEC that it had directly notified customers if their information was stored in the accessed repositories.“[We] informed our customers generally that no additional actions are required at this time,” SailPoint’s SEC filing reads.SailPoint has not shared additional information on the attack, nor on the type of data that might have been compromised.It did not name the threat actor responsible for the incident, and it’s unclear if the intrusion is related to the recent spree of softwaresupply chainattacks claimed by theTeamPCPhacking group.SecurityWeekhas emailed SailPoint for additional information on the cyberattack and will update this article if the company responds.Related:Checkmarx Jenkins AST Plugin Compromised in Supply Chain AttackRelated:‘PCPJack’ Worm Removes TeamPCP Infections, Steals CredentialsRelated:Over 500 Organizations Hit in Years-Long Phishing CampaignRelated:Government, Scientific Entities Hit via Daemon Tools Supply Chain Attack
“[We] informed our customers generally that no additional actions are required at this time,” SailPoint’s SEC filing reads.SailPoint has not shared additional information on the attack, nor on the type of data that might have been compromised.It did not name the threat actor responsible for the incident, and it’s unclear if the intrusion is related to the recent spree of softwaresupply chainattacks claimed by theTeamPCPhacking group.SecurityWeekhas emailed SailPoint for additional information on the cyberattack and will update this article if the company responds.Related:Checkmarx Jenkins AST Plugin Compromised in Supply Chain AttackRelated:‘PCPJack’ Worm Removes TeamPCP Infections, Steals CredentialsRelated:Over 500 Organizations Hit in Years-Long Phishing CampaignRelated:Government, Scientific Entities Hit via Daemon Tools Supply Chain Attack
SailPoint has not shared additional information on the attack, nor on the type of data that might have been compromised.It did not name the threat actor responsible for the incident, and it’s unclear if the intrusion is related to the recent spree of softwaresupply chainattacks claimed by theTeamPCPhacking group.SecurityWeekhas emailed SailPoint for additional information on the cyberattack and will update this article if the company responds.Related:Checkmarx Jenkins AST Plugin Compromised in Supply Chain AttackRelated:‘PCPJack’ Worm Removes TeamPCP Infections, Steals CredentialsRelated:Over 500 Organizations Hit in Years-Long Phishing CampaignRelated:Government, Scientific Entities Hit via Daemon Tools Supply Chain Attack
It did not name the threat actor responsible for the incident, and it’s unclear if the intrusion is related to the recent spree of softwaresupply chainattacks claimed by theTeamPCPhacking group.SecurityWeekhas emailed SailPoint for additional information on the cyberattack and will update this article if the company responds.Related:Checkmarx Jenkins AST Plugin Compromised in Supply Chain AttackRelated:‘PCPJack’ Worm Removes TeamPCP Infections, Steals CredentialsRelated:Over 500 Organizations Hit in Years-Long Phishing CampaignRelated:Government, Scientific Entities Hit via Daemon Tools Supply Chain Attack
SecurityWeekhas emailed SailPoint for additional information on the cyberattack and will update this article if the company responds.Related:Checkmarx Jenkins AST Plugin Compromised in Supply Chain AttackRelated:‘PCPJack’ Worm Removes TeamPCP Infections, Steals CredentialsRelated:Over 500 Organizations Hit in Years-Long Phishing CampaignRelated:Government, Scientific Entities Hit via Daemon Tools Supply Chain Attack
Related:Checkmarx Jenkins AST Plugin Compromised in Supply Chain AttackRelated:‘PCPJack’ Worm Removes TeamPCP Infections, Steals CredentialsRelated:Over 500 Organizations Hit in Years-Long Phishing CampaignRelated:Government, Scientific Entities Hit via Daemon Tools Supply Chain Attack
Related:‘PCPJack’ Worm Removes TeamPCP Infections, Steals CredentialsRelated:Over 500 Organizations Hit in Years-Long Phishing CampaignRelated:Government, Scientific Entities Hit via Daemon Tools Supply Chain Attack
Related:Over 500 Organizations Hit in Years-Long Phishing CampaignRelated:Government, Scientific Entities Hit via Daemon Tools Supply Chain Attack
Related:Government, Scientific Entities Hit via Daemon Tools Supply Chain Attack
Ionut Arghire is an international correspondent for SecurityWeek.
Source: SecurityWeek
