Security Update: Red Hat Consulting GitLab Incident

Red Hat has recently disclosed a security incident involving its Consulting team’s GitLab instance. In this case, attackers gained unauthorized access to parts of that system, which contained project files from specific customer engagements. Importantly, this incident did not affect Red Hat’s products, subscription services, or customer support systems.

At VSHN, we have carefully reviewed the situation. Our Managed OpenShift service and customer environments are not affected by this incident:

• We operate our own GitLab infrastructure for all customer repositories.
• We do not rely on Red Hat Consulting services in delivering our products.
• Our Managed OpenShift operations are isolated from third-party consulting platforms.
• The leaked listing does not contain VSHN or its customers.

Although this incident has no direct impact on VSHN customers, we continue to closely monitor security advisories from Red Hat and other partners. Security is a shared responsibility, and we remain committed to protecting our customers’ data and platforms with the highest standards.

For details on the Red Hat incident, see the official Red Hat statement: https://www.redhat.com/en/blog/security-update-incident-related-red-hat-consulting-gitlab-instance

Leaked listing of the affected repositories: https://securitronlinux.com/linux/Paste.html

If you have any questions about this, please don’t hesitate to contact us: https://www.vshn.ch/en/contact/