IT contractor CGI Federal says US government data breach was tied to Atlassian bug (updated)
13/02/2024 19:57
(Adds comment from Atlassian in paragraph 3)
By Raphael Satter
WASHINGTON, Feb 13 (Reuters) - A U.S. government data
breach disclosed earlier this year was tied to a bug in
enterprise software maker Atlassian's TEAM.O Confluence suite
of collaboration tools, an IT contractor said on Tuesday.
CGI Federal, an IT contractor and unit of CGI Inc GIBa.TO ,
said in a statement that it was working "with authorities and
clients to identify and disclose any data affected by the
Confluence exploitation," which was made public back in October.
Reuters has been unable to determine the size and scope of
the breach. On Monday, the Government Accountability Office told
Reuters that 6,000 current and former GAO employees had been
victims of a data breach by an unnamed "threat actor" in
connection with the hack. Whether any other government agencies
have been affected has not been publicly disclosed.
Atlassian said in a statement that it had warned customers
that hackers were exploiting the bug on Oct. 3 and that it had
been assisting them with their response. The U.S. cyber watchdog
agency, the Cybersecurity and Infrastructure Security Agency,
did not immediately return an email.
(Reporting by Raphael Satter in Washington
Editing by Matthew Lewis and Chizu Nomiyama)
((Raphael.Satter@thomsonreuters.com;))
Recent news on CGI
See all newsCanada Stocks: TSX falls for second day on lower oil and gold prices
Brief: CGI and Telia announce agreement for business services transfer and new strategic partnership
Brief: CGI And Telia Announce Agreement For Business Services Transfer And New Strategic Partnership
Brief: Cgi - Selected For Studyinfo Development And Maintenance By Finnish National Agency For Education
Brief: CGI And Posti Expand Strategic Partnership In Omnichannel Communications Solutions