Credential leak fears raised following security breach at Travis CI

John Leyden reports:

Concern is growing within the infosec community that a breach at DevOps platform vendor Travis CI might run deeper than the firm has so far been prepared to admit.

Travis CI, a continuous integration and continuous delivery (CI/CD) service for cloud platform projects, admitted to an issue in a post on its community forums while also downplaying its significance:

Read more on The Daily Swig. The article contains very critical comments about Travis CI’s incident response from security professionals.