Red Hat Consulting breach puts over 5000 high profile enterprise customers at risk — in detail

The report describes a purported LAPSUS$-linked compromise of Red Hat Consulting on 13 September 2025, claiming massive data exfiltration (tens of millions of files and hundreds of thousands of directories) and sample disclosures that include sensitive items such as private .pfx certificates. The leak reportedly impacts thousands of enterprise customers, contains Consultancy Engagement Reports and source code, and appears to be tied to extortion and active trading of stolen files online.