The Trellix source code breach claimed by RansomHouse highlights a critical long-term threat, even as Trellix reports no immediate exploitation. For a cybersecurity vendor, exposed source code provides attackers with the precise knowledge needed for future evasion, creating strategic blind spots for customers. As the article states, 'The current absence of observed exploitation should not be…

https://www.tpp.blog/2dlkdrk

#cybersecurity #trellix #ransomhouse

🤖 This post was AI-generated.

#Trellix source code breach claimed by #RansomHouse hackers

https://www.bleepingcomputer.com/news/security/trellix-source-code-breach-claimed-by-ransomhouse-hackers/

#cybersecurity #DataBreach

RansomHouse Hackers Claim Breach of Trellix Source Code

Trellix has confirmed a breach of its source code repository, with hackers from the notorious RansomHouse group claiming to have accessed and encrypted sensitive data on April 17. The group has even posted leaked screenshots to back up its claims.

https://osintsights.com/ransomhouse-hackers-claim-breach-of-trellix-source-code?utm_source=mastodon&utm_medium=social

#Ransomhouse #Trellix #SourceCodeBreach #DataLeak #Extortion

Donuts and Beagles: Fake Claude site spreads backdoor

A fraudulent website impersonating Anthropic's Claude AI platform has been distributing a previously undocumented backdoor called Beagle through malvertising campaigns. The attack begins when victims download a fictitious tool named Claude-Pro Relay from claude-pro[.]com, delivered as a 505 MB ZIP archive. The infection chain utilizes DLL sideloading, exploiting a signed G DATA antivirus updater to load malicious code. The technique mirrors PlugX delivery methods but deploys different payloads. Beagle supports eight commands including shell execution, file transfer, and directory listing, communicating with C2 servers using AES encryption. Related samples dating to February 2026 have been identified, with some variants delivering AdaptixC2 framework. Additional domains impersonated security vendors like Trellix, CrowdStrike, and SentinelOne. The infrastructure spans Cloudflare for distribution and Alibaba Cloud for command and control.

Pulse ID: 69fcc63f1dce161fc2f8380c
Pulse Link: https://otx.alienvault.com/pulse/69fcc63f1dce161fc2f8380c
Pulse Author: AlienVault
Created: 2026-05-07 17:05:03

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#BackDoor #Cloud #CrowdStrike #CyberSecurity #Encryption #InfoSec #Malvertising #OTX #OpenThreatExchange #PlugX #SentinelOne #SideLoading #Trellix #ZIP #bot #AlienVault

📢 Trellix : violation d'un dépôt de code source, aucune preuve d'exploitation
📝 📰 **Source** : Security Affairs (Pierluigi Paganini) — **Date** : 2 mai 2026

🔓 **Nature de l'incident** : Trellix, éditeur de...
📖 cyberveille : https://cyberveille.ch/posts/2026-05-06-trellix-violation-d-un-depot-de-code-source-aucune-preuve-d-exploitation/
🌐 source : https://securityaffairs.com/191584/data-breach/trellix-discloses-the-breach-of-a-code-repository.html
#TTP #Trellix #Cyberveille

📰 Cybersecurity Vendor Trellix Confirms Breach of Source Code Repository

Cybersecurity vendor Trellix confirms a security breach involving unauthorized access to its source code. The company, formed from McAfee & FireEye, is investigating but says no code has been altered or exploited. 🛡️ #CyberSecurity #Breach #Trellix #SupplyChain

🔗 https://cyber.netsecops.io

#Trellix discloses #DataBreach after source code repository hack

https://www.bleepingcomputer.com/news/security/trellix-discloses-data-breach-after-source-code-repository-hack/

#cybersecurity

Trellix discloses data breach after source code repository hack

Cybersecurity firm Trellix disclosed a data breach after attackers gained access to "a portion" of its source code repository.

#trellix #sourcecode #databreach #security #cybersecurity #hackers #hacking #hacked

https://www.bleepingcomputer.com/news/security/trellix-discloses-data-breach-after-source-code-repository-hack/