ACCORDING to Trellix, it suffered a breach that enabled unauthorized access to a portion of its source code, with the company stating that it “recently identified” the compromise and that it has engaged leading forensic experts to resolve the matter and notified law enforcement. Trellix did not disclose the exact nature of the data that may have been accessed, but it indicated there are indications that its source code has been affected or exploited.
It added that, based on its investigation to date, there is no evidence that its source code release or distribution process was affected, or that the source code itself was exploited. The firm did not identify who may be behind the incident or how long attackers had access to its systems, and said additional information will be shared as appropriate once the investigation is complete.
Trellix is owned by Symphony Technology Group and was founded in January 2022 after the merger of McAfee Enterprise and FireEye, with Mandiant later acquired by Google in a deal worth $5.4 billion. The Hacker News has reached out for comment and will update the story if a response is received.