Published 21 hours ago • loading... • Updated 10 hours ago

Red Hat repos raided, claims cybercrew, files stolen

Last month, Red Hat confirmed a security incident tied to Red Hat Consulting but declined to verify claims by Crimson Collective, which says it stole nearly 570GB from 28,000 projects.
The Crimson Collective says it found and used authentication tokens and full database URIs to access downstream customers, claiming the intrusion occurred around two weeks ago and extortion attempts yielded only an automated reply.
On Telegram the hackers published a directory listing and samples, including about 800 Customer Engagement Reports from 2020–2025 naming clients like Bank of America, T-Mobile, AT&T, Fidelity and Walmart.
Red Hat mobilized its incident response team and is working with cybersecurity firms and authorities, advising clients to conduct security posture reviews amid warnings CERs risk downstream customers.
Experts warn the incident could erode trust in cloud-based repository services, heightening scrutiny on Red Hat's OpenShift AI flaw and sparking debate on security standards for open-source development.

Insights by Ground AI

Podcasts & Opinions

Podcast Mention

CyberWire Daily

Daily Cybersecurity and Tech News podcast featuring Dave Bittner, Rick Howard and David Moulton

CISA furlough sparks fears.

CyberWire Daily discusses Red Hat’s security incident and claimed GitHub breach.

7 hours ago

Listen to Full Episode Full Episode Unlock Timestamp

Get Vantage — Podcasts, Ratings, Timestamps

Podcasts & Opinions

12 Articles

The Register

Center

Red Hat repos raided, claims cybercrew, files stolen

: 570GB of data claimed to be stolen by the Crimson Collective

18 hours ago

Read Full Article

BleepingComputer

Center

Red Hat confirms security incident after hackers claim GitHub breach

An extortion group calling itself the Crimson Collective claims to have breached Red Hat's private GitHub repositories, stealing nearly 570GB of compressed data across 28,000 internal projects.

1 day ago

Read Full Article

cybernoz.com

Hackers claim to have plundered Red Hat’s GitHub repos - Cybernoz - Cybersecurity News

The Crimson Collective, an emerging extortion / hacker group, has made a bombshell claim on their Telegram channel: they have gained access to Red Hat’s GitHub and have exfiltrated data from over 28,000 internal repositories connected to the company’s consulting business. What data was allegedly compromised? Red Hat is the U.S.-based open-source enterprise software company known for providing Linux, cloud, container, and automation platforms for…

10 hours ago

Read Full Article

Help Net Security

Hackers claim to have plundered Red Hat's GitHub repos - Help Net Security

An emerging hacker group claims to have exfiltrated data from 28,000+ internal GitHub repos connected to Red Hat's consulting business.

10 hours ago

Read Full Article

Techzine Europe

Red Hat hit by GitLab breach: 570GB stolen, including client info

Red Hat confirms security incident after hackers claim to have stolen 570GB of data from GitHub repositories and customer documents.

12 hours ago

Read Full Article

WebProNews

Red Hat Confirms 570GB Data Breach by Crimson Collective Hackers

In a significant blow to one of the tech industry’s stalwarts, Red Hat has confirmed a security incident involving unauthorized access to its systems, following claims by a hacker group that it breached the company’s private GitHub repositories. The extortion group, dubbing itself the Crimson Collective, asserted it had stolen nearly 570 gigabytes of compressed data from approximately 28,000 internal projects. This revelation has sent ripples th…

13 hours ago

Read Full Article

Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/year