Daily Dark Web
  • Home
  • Data Breaches
  • Inside the Adversary
    • Dark Web Informants
  • DDW Top Lists
  • Ransomware News
  • DarkWeb News
    • Vulnerability
    • Cyber Attacks
  • Unauthorized Accesses
  • About Us
No Result
View All Result
  • Home
  • Data Breaches
  • Inside the Adversary
    • Dark Web Informants
  • DDW Top Lists
  • Ransomware News
  • DarkWeb News
    • Vulnerability
    • Cyber Attacks
  • Unauthorized Accesses
  • About Us
No Result
View All Result
Daily Dark Web
No Result
View All Result
Home Data Breaches

Red Hat Confirms Data Breach After GitLab Repositories Stolen

🇺🇸 United States - Red Hat

October 2, 2025
Reading Time: 2 mins read
Red Hat Confirms Data Breach After GitLab Repositories Stolen

This article has been updated to correct a factual error. The original version incorrectly stated that the Red Hat security incident involved GitHub. Red Hat has clarified that the incident was related to a specific GitLab instance used for Red Hat Consulting engagements, not Github. The original post has been corrected below.

The Crimson Collective extortion group claims to have breached private repositories on a GitLab instance of Red Hat, a prominent American multinational software company that provides open-source software products to enterprises.

While Red Hat has not made an official public announcement confirming a data breach, the company did acknowledge the event in a statement to BleepingComputer. “Red Hat is aware of reports regarding a security incident related to our consulting business, and we have initiated necessary remediation steps,” the company stated.

The actor alleges that they attempted to contact Red Hat with an extortion demand but received only a templated reply instructing them to submit a vulnerability report. The group posted screenshots of their interactions and the allegedly stolen data on their Telegram channel.

According to the actor, the stolen information amounts to nearly 570GB of compressed data and includes:

  • Over 28,000 internal repositories from the GitLab instance
  • Customer Engagement Reports (CERs), which may contain sensitive information about customer networks and infrastructure
  • Authentication tokens
  • Database URIs
  • Source code and internal project files

An analysis of the leaked file directory names reveals a significant number of high-profile Red Hat clients whose projects and data may have been compromised. The list includes major international companies across finance, automotive, telecommunications, technology, and government sectors. A partial list of the exposed clients includes:

  • 3M
  • Accenture
  • Adobe
  • Airbus
  • Amadeus
  • American Express (Amex)
  • AT&T
  • Bank of America
  • Barclays
  • Best Buy
  • Boeing
  • Bosch
  • Canon
  • Charter Communications
  • Cisco
  • Citi
  • Comcast
  • Credit Suisse
  • Dell EMC
  • Delta Air Lines
  • Deutsche Bank
  • Ericsson
  • ExxonMobil
  • FedEx
  • Fidelity
  • Ford
  • Fujitsu
  • Goldman Sachs
  • Hitachi
  • Honda
  • HSBC
  • Huawei
  • IBM
  • Intel
  • JPMorgan Chase (JPMC)
  • Kaiser Permanente
  • Leidos
  • Lloyds Bank
  • Lockheed Martin
  • Marriott
  • Morgan Stanley
  • NASA
  • Nestlé
  • Nissan
  • Nokia
  • NVIDIA
  • Oracle
  • Orange
  • Palo Alto Networks
  • Pirelli
  • Prudential
  • Qatar Airways
  • Rakuten
  • Raytheon
  • Roche
  • Samsung
  • Santander
  • SAP
  • Shell
  • Siemens
  • Sony
  • Starbucks
  • State Street
  • Swisscom
  • Takeda
  • Telefónica
  • Tesco
  • T-Mobile
  • Toyota
  • UBS
  • Unilever
  • United Airlines
  • USPS
  • Verizon
  • Vodafone
  • Volkswagen
  • Volvo
  • Wells Fargo
  • Workday
  • Zurich Insurance Group
Tags: Crimson CollectiveCyberSecuritydata-breachextortiongitlabRed Hatsource code leakUnited States
ShareTweet

Related Posts

Uganda Ministry of Agriculture MAAIF Suffers Data Breach
Data Breaches

Uganda Ministry of Agriculture MAAIF Suffers Data Breach

April 27, 2026
Ellipal Cryptocurrency Wallet Suffers Alleged Data Breach
Data Breaches

Ellipal Cryptocurrency Wallet Suffers Alleged Data Breach

April 27, 2026
BlackSexFinder Adult Platform Suffers Massive Data Breach
Data Breaches

BlackSexFinder Adult Platform Suffers Massive Data Breach

April 27, 2026
Jeff Honeycutt Insurance Agency Data Breach Exposes Client Info
Data Breaches

Jeff Honeycutt Insurance Agency Data Breach Exposes Client Info

April 27, 2026
FFWPU and Tongil Group Face Extensive Data Breach
Data Breaches

FFWPU and Tongil Group Face Extensive Data Breach

April 27, 2026
Terra West Management Services Suffers Major Data Breach
Data Breaches

Terra West Management Services Suffers Major Data Breach

April 24, 2026
Next Post
Cyprus Post Data Breach Exposes Sensitive Government Documents

Cyprus Post Data Breach Exposes Sensitive Government Documents

Huawei Technologies Source Code Exposed in Data Breach

Huawei Technologies Source Code Exposed in Data Breach

Recommended Stories

Official Chinese Enterprise Services Website for Foshan Allegedly Hacked

Official Chinese Enterprise Services Website for Foshan Allegedly Hacked

September 17, 2025
Alleged Data Breach at Empowerers.co Exposes Sensitive Information

Alleged Data Breach at Empowerers.co Exposes Sensitive Information

December 10, 2024
Global: Instagram User Database Reportedly Leaked

Global: Instagram User Database Reportedly Leaked

January 9, 2025

Popular Stories

  • SudamericaData Breach Exposes Over 1TB of Argentine Records

    SudamericaData Breach Exposes Over 1TB of Argentine Records

    0 shares
    Share 0 Tweet 0
  • Threat Actor Claims Sale of Dell Database Containing 49 Million Customer Records

    0 shares
    Share 0 Tweet 0
  • SUUMO, CHINTAI, At Home, HOME’S Suffer Data Breach

    0 shares
    Share 0 Tweet 0
  • Financial Tech Giant SilverLake Axis Allegedly Breached – 423GB of Data for Sale

    0 shares
    Share 0 Tweet 0
  • Telekom Serbia Investigates Leak of 160,000 Customer Records

    0 shares
    Share 0 Tweet 0
Daily Dark Web

Disclaimer: Daily Dark Web (DDW) is an independent media platform providing information, analysis, and reporting on cybersecurity, cyber incidents, and related digital developments. All content published on this website is for informational and journalistic purposes only. DDW does not support, endorse, or promote any illegal activities, threat actors, or organizations referenced in its content. Any statements, claims, or opinions expressed by third parties, including interview subjects, are their own and do not reflect the views of DDW. Such content may include unverified information and should be interpreted critically. DDW does not participate in, facilitate, or coordinate any activities discussed or referenced on this platform. Under no circumstances should any content be interpreted as encouragement, instruction, or endorsement of unlawful actions. All interactions and publications are conducted in the public interest to enhance awareness and understanding of the evolving cyber landscape.

No Result
View All Result
  • About Us
  • Home
  • Newsletter
  • Privacy Policy

Disclaimer: Daily Dark Web (DDW) is an independent media platform providing information, analysis, and reporting on cybersecurity, cyber incidents, and related digital developments. All content published on this website is for informational and journalistic purposes only. DDW does not support, endorse, or promote any illegal activities, threat actors, or organizations referenced in its content. Any statements, claims, or opinions expressed by third parties, including interview subjects, are their own and do not reflect the views of DDW. Such content may include unverified information and should be interpreted critically. DDW does not participate in, facilitate, or coordinate any activities discussed or referenced on this platform. Under no circumstances should any content be interpreted as encouragement, instruction, or endorsement of unlawful actions. All interactions and publications are conducted in the public interest to enhance awareness and understanding of the evolving cyber landscape.

Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?