Schneider Electric has confirmed a developer platform was breached after a threat actor claimed to steal 40GB of data from the company's JIRA server. Immediately, their Global Incident Response team was mobilized to respond to the incident. Schneider.
The breach occurred on an environment used by developers to access various software development tools and resources, which is critical for testing and collaboration. Schneider Electric has initiated a thorough investigation and reinforced its security protocols. While investigating, Schneider Electric shared that its products and services remain unaffected.
Over the weekend, a threat actor known as "Grep" taunted the company on X, indicating they had breached its systems. Once they gained access, they claimed to use a MiniOrange REST API to scrape 400k rows of user data, which Grep says includes 75,000 unique email addresses and full names for Schneider Electric employees and customers.
The company is currently working with cybersecurity experts to assess the impact of the breach and ensure the protection of client data while providing updates to affected customers. This incident underscores the growing cybersecurity risks associated with developer platforms, which have become valuable targets for attackers seeking access to corporate data and intellectual property.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.