Squaring the CircleCI: DevOps platform publishes post-mortem on recent breach

CircleCI, a popular DevOps platform, reported a security breach due to malware planted on an engineer’s laptop. Unauthorized access allowed an attacker to copy data from certain parts of the company’s database. CircleCI advised developers to change secrets and API tokens. Specific security measures, such as restricting employee access to production systems, were implemented in response to the breach.