Axtria, a global provider of cloud software and data analytics solutions with reported revenue of $1.2 billion, has allegedly suffered a significant data breach. The incident, which reportedly occurred in January 2026, involves the exfiltration and subsequent publication of the company’s proprietary data on the DarkForums hacking community. A threat actor claimed responsibility for the attack, stating they have uploaded the stolen data for download.
According to the actor, the compromised dataset consists of the company’s source code. An analysis of the leaked file structure indicates that multiple critical repositories and development environments have been exposed, including:
-
SalesIQ Platform: Extensive source code related to the “SalesIQ” product line, including
salesiq_icnextgen(Incentive Compensation),salesiq_reporting, andsalesiq_ic_opsdashboard. -
Artificial Intelligence Assets: Directories labeled
genai_jiraagent,salesiq_agentic_services, andsalesiq_genai_copilot_ui, suggesting the theft of generative AI and copilot intellectual property. -
Infrastructure & DevOps: Sensitive configuration files, including Kubernetes manifests (
k8s-deployment.yaml), Dockerfiles, and Helm charts (ic_ar_helm). -
Backend & Database: Source code for
mobile_backendcontaining SQL schema scripts (db_schema_script_RDS.sql), Python application code, and environment configurations.
