Crimson Collective Strikes Red Hat: Major Data Breach Uncovered

On October 6, 2025, a substantial cyberattack attributed to the Crimson Collective targeted Red Hat, resulting in the unauthorized access and theft of approximately 570GB of compressed data from one of its GitLab instances. This breach compromised 28,000 internal repositories, including sensitive information detailing various organizations' infrastructures and authentication processes. The ramifications of this incident are profound, as the stolen data could provide adversaries with critical insights into the operations of affected organizations, heightening the urgency for enhanced cybersecurity measures across the sector.

Also In Security Today

WestJet Data Breach: The airline WestJet suffered a cyber attack that compromised personal information of about 1.2 million individuals, including names, addresses, and government IDs. The Scattered Spider cybercrime group has been linked to this breach. Read more.

Oracle Vulnerability: Oracle is scrambling to patch a critical vulnerability (CVE-2025-61882) in its E-Business Suite after it was exploited by the Cl0p ransomware group. Attackers could gain remote control over certain components, posing a significant risk to data security. Read more.

Discord Data Leak: A data breach involving Discord was traced back to a third-party provider, Zendesk, leading to the theft of personal data from users who interacted with Discord's support teams. Read more.

Motility Software Solutions Ransomware Attack: A ransomware attack on Motility Software Solutions affected approximately 766,000 clients, exposing sensitive personal information, including names and Social Security numbers. Read more.

Analyst's Take

Today's incidents highlight an alarming trend in the sophistication and scale of cyber threats. Organizations must prioritize comprehensive security practices, including regular vulnerability assessments and prompt patch management, particularly in light of the CVE-2025-61882 vulnerability in Oracle's software. The exploitation of third-party services, as seen in the Discord breach, reinforces the need for stringent third-party risk management frameworks. Defenders should remain vigilant and proactive in updating security protocols to safeguard against evolving threats.