Our investigation, conducted with support from a leading third-party forensic firm, indicates that a cybercriminal group has published data related to Checkmarx to the dark web. Based on current evidence, we believe this data originated from Checkmarx’s GitHub repository, and that access to that repository was facilitated through the initial supply chain attack of March 23, 2026. 

Checkmarx’s GitHub repository is maintained separately from our customer production environment. As standard practice, we do not store customer data in our GitHub repository. Our forensic investigation is ongoing and we are actively working to verify the nature and scope of the posted data. 

As part of our immediate response, we have locked down access to the affected GitHub repository while the investigation continues. 

If we determine that customer information was involved in this incident, we will notify customers and all relevant parties immediately. 

We expect to share a more detailed update within 24 hours. 
 
Previous Updates 
April 23, 2026 
https://checkmarx.com/blog/checkmarx-security-update-april-22/  
March 24, 2026 
https://checkmarx.com/blog/checkmarx-security-update/ 
 
Questions and Support 
If you have questions about this incident or need assistance assessing your environment, please open a case via the Support Portal.