The repercussions of the SolarWinds hack will be with us for a long time to come, hopefully with significant lessons learnt. At the moment though, we are still verry much at the stage of trying to map out the true scope of the hack. With these efforts ongoing, both the Wall Street Journal and the New York Times published stories stating that JetBrains, a Czech software developer, is under investigation in connection to the hack.
This is significant since JetBrains produces a number of popular IDEs and other development products. Compromising these would give an attacker unbelievably broad access to targets the world over. In particular though, the allegation is that the JetBrains product TeamCity was compromised. TeamCity is a CI and build management server which has been on the market for more than a decade and is used by, amongst others, SolarWinds.
However, JetBrains has issued a statement denying any knowledge of a breach and stating that it has not been contacted by investigators. However, this does not mean that there isn’t a link since JetBrains itself raised the possibility of otherwise secure, but incorrectly configured, instances of TeamCity being targeted.