Statement on the story from The New York Times regarding JetBrains and SolarWinds
Please make sure you also read the follow-up post from the 7th of January
The New York Times has published a story in which they point to JetBrains being under investigation and somehow related to the SolarWinds breach that recently took place.
First and foremost, JetBrains has not taken part or been involved in this attack in any way. SolarWinds is one of our customers and uses TeamCity, which is a Continuous Integration and Deployment System, used as part of building software. SolarWinds has not contacted us with any details regarding the breach and the only information we have is what has been made publicly available. It’s important to stress that TeamCity is a complex product that requires proper configuration. If TeamCity has somehow been used in this process, it could very well be due to misconfiguration, and not a specific vulnerability. Furthermore, security is our top concern and we notify and manage updates transparently in our Security Bulletin.
Secondly, we have not been contacted by any government or security agency regarding this matter, nor are we aware of being under any investigation. If such an investigation is undertaken, the authorities can count on our full cooperation.
We remain open to answering any and all questions regarding this matter and as always are committed to delivering the best possible products and services to our customers.
Chief Executive Officer
Subscribe to Blog updates
Thanks, we've got you!
Introducing TeamCity Cloud – A Managed CI/CD Service by JetBrains
Everything you love about TeamCity – now hosted by us! Today we’re launching TeamCity Cloud – a cloud version of TeamCity that we’ve been developing for almost two years. TeamCity Cloud is a managed CI/CD service that is designed for teams that don’t want to deal with maintaining and scaling their …
Kotlin DSL for Beginners: Recommended Refactorings
Imagine you have just switched your TeamCity project over to Kotlin DSL. Your builds run successfully, but what next? What small refactorings can you apply to your Kotlin DSL code to help keep it clean and tidy? In this article, we'll discuss the next steps you can take. 1. Remove disabled build st…
CI From The Trenches – Video Interviews
For a while now, we have been getting in touch with TeamCity users to find out about the projects they are working on. From no-code platforms to online games, oil platform management systems to build systems, frameworks to rockets – TeamCity is used in a variety of projects. Now we are posting the i…
Hardening Your TeamCity Server
TeamCity is at the heart of your build process. It builds your source code into deployable artifacts and often also deploys those artifacts, which means it has potential access to sensitive information. While it offers great security by default, here are some additional steps you can take to harden…