Recently, the SiegedSec hacker group claimed on Telegram that it had stolen data from the Australian company Atlassian, the developer of Jira, and the company blamed a third-party provider for data leak.
Let me remind you that we also wrote that Developers Fixed a Critical Bug in Atlassian Bitbucket Server and Data Center, and also that Hackers Attack PyPI Package Developers.And also information security specialists said that Unpatched 0-day Vulnerability in Atlassian Confluence is under Attack.
Atlassian representatives have already confirmed that the data published by the hackers is genuine. However, the company emphasized that the leak occurred from a third-party supplier, and Atlassian’s own network and customer information are securely protected.
Shortly after the release of this statement, researchers from Check Point told Bleeping Computer that they had studied the leak, and it does contain floor plans of Atlassian’s offices in Sydney and San Francisco, as well as a JSON file with information about employees.
Soon, Atlassian representatives themselves confirmed to the journalists of the publication that this leak was related to the hacking of a third-party supplier, Envoy, whose services the company uses for office needs.
Interestingly, in response to this, Envoy stated that they knew nothing about any hacks. According to them, the leak was due to the fact that the credentials of one of the Atlassian employees were stolen, and this allowed attackers to access data in the Envoy app:
