Checkmarx Supply Chain Breach Affects KICS Analysis Tool

Hackers compromised Docker images, VSCode extensions, and Open VSX extensions associated with Checkmarx’s KICS (Keeping Infrastructure as Code Secure) analysis tool to exfiltrate sensitive data from developer environments. The breach targeted supply-chain components used by developers to integrate KICS into their workflows. No specific dates, CVE IDs, or technical indicators of compromise (IOCs) were disclosed in the report. The attack focused on harvesting credentials, environment variables, and other confidential information from affected systems. Checkmarx has not provided details on the number of impacted users or the duration of the compromise. The incident highlights risks in third-party tooling within software development pipelines.