French cybersecurity firm Stormshield has revealed that it has suffered a security breach, and hackers have accessed sensitive information.
The company, which is a major provider to the French government, says that a hacker managed to steal data after gaining access to a portal used by customers and partners, potentially accessing support tickets and communications with staff.
Although Stormshield has not shared details of how many customers have been affected by the breach, it does say it has informed all those who might have been impacted, and that passwords for all accounts have been reset.
While investigating the security breach, Stormshield also discovered that some of the source code for the Stormshield Network Security (SNS) firewall was also stolen.
This raises the spectre of a malicious attacker either uncovering security holes in the firewall that might be exploited in later attacks, or the creation of malicious updates.
As a precautionary measure, the French cyber-security agency ANSSI says it has put Stormshield’s products “under observation” while the breach continues to be investigated.
In addition, the vendor has replaced the digital certificates used to sign updates to Stormshield Network Security. Updates have been made available to customers and partners.
Forgetting for one moment the obvious concern that Stormshield’s customers and partners must be feeling, this is also a nightmare for the French cybersecurity firm.
But they’re not the first cybersecurity firm to be hacked, and they certainly won’t be the last.
It would be fascinating to know who might have perpetrated the attack, and what they might be planning to do with the information that they have stolen.
Found this article interesting? Follow Graham Cluley on Twitter to read more of the exclusive content we post.