Bleeping Computer

Codecov starts notifying customers affected by supply-chain attack

As of a few hours ago, Codecov has started notifying the maintainers of software repositories affected by the recent supply-chain attack. These notifications, delivered via both email and the Codecov ...
Bleeping Computer

Rapid7 source code, credentials accessed in Codecov supply-chain attack

US cybersecurity firm Rapid7 has disclosed that some source code repositories were accessed in a security incident linked to the supply-chain attack that recently impacted customers of the popular ...
Ars Technica

Backdoored developer tool that stole credentials escaped notice for 3 months

A publicly available software development tool contained malicious code that stole the authentication credentials that apps need to access sensitive resources. It’s the latest revelation of a supply ...
SiliconANGLE

Sentry acquires code analysis startup Codecov to boost its app monitoring platform

Developer-focused application monitoring platform Sentry is beefing up its capabilities after closing today on the acquisition of a company called Codecov LLC, whose tools help DevOps teams to ship ...