The JetBrains TeamCity software supply chain attack: Lessons learned

The group that perpetrated the notorious SunBurst attack on SolarWinds in 2020 is actively exploiting a vulnerability in JetBrains TeamCity's continuous integration/continuous delivery (CI/CD) software, which is used by development teams to manage and automate compilation, building, testing, and releasing software.

appsec & supply chain security attack building continuous continuous delivery continuous integration delivery development development teams exploiting integration jetbrains jetbrains teamcity lessons learned manage software software supply chain software supply chain attack solarwinds sunburst supply supply chain supply chain attack teamcity teams testing vulnerability