A threat actor gained access to one of the customer support portals of French cyber-security firm Stormshield and stole information on some of its clients.
The attackers also managed to steal parts of the source code for the Stormshield Network Security (SNS) firewall, a product certified to be used in sensitive French government networks.
The company investigated the incident with the French cyber-security agency ANSSI as the attack caused a major security breach inside the French government.
Source: https://www.zdnet.com/article/security-firm-stormshield-discloses-data-breach-theft-of-source-code/
TPRM report: https://scoringcyber.rankiteo.com/company/stormshield
"id": "sto1573622",
"linkid": "stormshield",
"type": "Breach",
"date": "02/2021",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of a geographical region"{'affected_entities': [{'industry': 'Technology',
'location': 'France',
'name': 'Stormshield',
'type': 'Cyber-Security Firm'}],
'attack_vector': 'Customer Support Portal',
'data_breach': {'data_exfiltration': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Client Information',
'Source Code']},
'description': 'A threat actor gained access to one of the customer support '
'portals of French cyber-security firm Stormshield and stole '
'information on some of its clients. The attackers also '
'managed to steal parts of the source code for the Stormshield '
'Network Security (SNS) firewall, a product certified to be '
'used in sensitive French government networks.',
'impact': {'data_compromised': ['Client Information', 'Source Code'],
'systems_affected': ['Customer Support Portal',
'Stormshield Network Security (SNS) '
'Firewall']},
'initial_access_broker': {'entry_point': 'Customer Support Portal'},
'response': {'third_party_assistance': ['French cyber-security agency ANSSI']},
'title': 'Stormshield Data Breach',
'type': 'Data Breach'}