Tag: gitlab
-
Sicherheitsupdates: Angreifer können GitLab-Accounts übernehmen
Tags: gitlabFirst seen on heise.de Jump to article: www.heise.de/news/Sicherheitsupdates-Angreifer-koennen-GitLab-Accounts-uebernehmen-9699252.html
-
Critical GitLab Bug Under Exploit Enables Account Takeover, CISA Warns
First seen on darkreading.com Jump to article: www.darkreading.com/application-security/critical-gitlab-bug-exploit-account-takeover-cisa
-
Vulnerability Recap 5/6/24 Aruba, Dropbox, GitLab Bugs
First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/vulnerability-recap-may-6-2024/
-
Critical GitLab account takeover flaw added to CISA’s KEV Catalog
First seen on scmagazine.com Jump to article: www.scmagazine.com/news/critical-gitlab-account-takeover-flaw-added-to-cisas-kev-catalog
-
Immediate GitLab account takeover flaw remediation crucial amid attacks
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/cisa-immediate-gitlab-account-takeover-flaw-remediation-crucial-amid-attacks
-
1,400 GitLab Servers Impacted by Exploited Vulnerability
CISA says a critical GitLab password reset flaw is being exploited in attacks and roughly 1,400 servers have not been patched. The post s a critical G… First seen on securityweek.com Jump to article: www.securityweek.com/1400-gitlab-servers-impacted-by-exploited-vulnerability/
-
CISA says GitLab account takeover bug is actively exploited in attacks
‹CISA warned today that attackers are actively exploiting a maximum-severity GitLab vulnerability that allows them to take over accounts via password … First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-says-gitlab-account-takeover-bug-is-actively-exploited-in-attacks/
-
GitLab Hackers Use ‘Forgot Your Password’ to Hijack Accounts
US CISA Orders Federal Agencies to Apply January Patch. The U.S. federal government’s cybersecurity agency warned that hackers are exploiting a vulner… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/gitlab-hackers-use-forgot-your-password-to-hijack-accounts-a-24991
-
CISA warnt: Microsoft Smartcreen- und Gitlab-Sicherheitslücke werden angegriffen
First seen on heise.de Jump to article: www.heise.de/news/Angreifer-umgehen-Microsoft-Smartscreen-und-brechen-in-Gitlab-ein-9705715.html
-
Hackers Create Legit Phishing Links With Ghost GitHub, GitLab Comments
First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/hackers-create-legit-phishing-links-with-ghost-github-gitlab-comments
-
Abusing GitHub flaw could compromise GitLab
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/abusing-github-flaw-could-compromise-gitlab
-
GitLab affected by GitHub-style CDN flaw allowing malware hosting
BleepingComputer recently reported how a GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/gitlab-affected-by-github-style-cdn-flaw-allowing-malware-hosting/
-
Early Lessons from the Sisense Breach
Business intelligence company Sisense has seen secrets compromised in its GitLab repositories, leading to a siphoning of its customers’ sensitive data… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/04/early-lessons-from-the-sisense-breach/
-
The New Version of JsOutProx is Attacking Financial Institutions in APAC and MENA via Gitlab Abuse
Resecurity researchers warn that a new Version of JsOutProx is targeting financial institutions in APAC and MENA via Gitlab abuse. Resecurity has dete… First seen on securityaffairs.com Jump to article: securityaffairs.com/161438/malware/new-jsoutprox-attacking-financial-institutions-apac-mena.html
-
GitLab Acquires Oxeye to Bolster SAST in DevSecOps Workflow
Acquisition Promises Enhanced Application Security and Reduced False Positives. The integration of Oxeye into GitLab’s suite marks a significant leap … First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/gitlab-acquires-oxeye-to-bolster-sast-in-devsecops-workflow-a-24695
-
GitLab fixt PostgreSQL-Lücke nicht: Angreifer können Admin-Rechte erlangen
Tags: gitlabFirst seen on heise.de Jump to article: www.heise.de/news/GitLab-fixt-PostgresSQL-Luecke-nicht-Angreifer-koennen-Admin-Rechte-erlangen-9653052.html
-
Sicherheitslücken: GitLab gegen mögliche Attacken abgesichert
Tags: gitlabFirst seen on heise.de Jump to article: heise.de/news/Sicherheitsluecken-GitLab-gegen-moegliche-Attacken-abgesichert-9636995.html
-
Streamlining DevOps: How to Integrate OX with GitLab for Enhanced Security
Tags: gitlabWe’re thrilled to announce that The OX Active ASPM platform is now fully integrated with GitLab. With this integration, users no longer have to choose… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/02/streamlining-devops-how-to-integrate-ox-with-gitlab-for-enhanced-security/
-
CVE-2024-0402: Critical File Writing Vulnerability in GitLab
A vulnerability has been identified in GitLab CE/EE, impacting all versions from 16.0 to 16.5.8, 16.6 to 16.6.6, 16.7 to 16.7.4, and 16.8 to 16.8.1. T… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2024-0402-gitlab/
-
GitLab Releases Updates to Address Critical Vulnerabilities
First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/gitlab-releases-updates-to-address-critical-vulnerabilities-