Czech software development firm JetBrains published a assertion nowadays denying reports from the New York Times and the Wall Street Journal claiming that JetBrains is below investigation for possibly becoming concerned in the SolarWinds hack that impacted hundreds of providers throughout the globe.
The stories, citing authorities sources, mentioned that US officials are searching at a circumstance wherever Russian hackers breached JetBrains and then launched assaults on its buyers, just one of which was SolarWinds.
In individual, investigators consider that hackers focused a JetBrains product or service named TeamCity, a CI/DI server that is used to assemble parts into the closing program application in a method acknowledged as “creating.”
But in a blog submit released today, JetBrains CEO Maxim Shafirov said that the Czech firm was unaware that it was getting under investigation for its role in the SolarWinds breach.
“SolarWinds is a person of our consumers and employs TeamCity, which is a Ongoing Integration and Deployment Program, employed as element of building software,” Shafirov said.
“SolarWinds has not contacted us with any specifics about the breach,” he extra.
“Next, we have not been contacted by any federal government or security agency about this matter, nor are we aware of currently being beneath any investigation. If these kinds of an investigation is undertaken, the authorities can count on our total cooperation.”
On the other hand, the JetBrains CEO, a Russian nationwide, did not totally rule out the possibility that its item could have been abused in the SolarWinds hack.
“It is really significant to pressure that TeamCity is a complex solution that demands correct configuration. If TeamCity has in some way been utilised in this course of action, it could pretty effectively be because of to misconfiguration, and not a particular vulnerability,” the exec reported.
Nevertheless, the two studies are also not really apparent on the alleged JetBrains breach. As Stefan Soesanto, Senior Cyber Defence Researcher at the Centre for Safety Experiments at the Swiss Federal Institute of Technological know-how (ETH) in Zurich, pointed out on Twitter earlier these days, far more aspects require to be clarified in advance of any guilt is solid on JetBrains’ position in the SolarWinds hack.
Current at 22:20 ET. An primary variation of this write-up claimed that JetBrains was becoming investigated as the origin place of the SolarWinds hack. This was incorrect. ZDNet regrets the error.