CISA says GitLab account takeover bug is actively exploited in attacks

May 1, 2024, 4:29 p.m. | Sergiu Gatlan

BleepingComputer www.bleepingcomputer.com

CISA warned today that attackers are actively exploiting a maximum-severity GitLab vulnerability that allows them to take over accounts via password resets. [...]

account accounts account takeover actively exploited attackers attacks bug cisa exploited exploiting gitlab gitlab vulnerability password security severity takeover today vulnerability

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

Ransomware gang targets Windows admins via PuTTy, WinSCP malvertising 5 hours ago | www.bleepingcomputer.com

administrators ads download fake +13

Android malware Grandoreiro returns after police disruption 9 hours ago | www.bleepingcomputer.com

accounts android android banking trojan android malware +16

Banking malware Grandoreiro returns after police disruption 9 hours ago | www.bleepingcomputer.com

accounts banking banking malware banking trojan +14

The Week in Ransomware - May 17th 2024 - Mailbombing is back 1 day, 2 hours ago | www.bleepingcomputer.com

attention back breachforums data +10

Microsoft to start enforcing Azure multi-factor authentication in July 1 day, 5 hours ago | www.bleepingcomputer.com

authentication azure factor july +8

SEC: Financial orgs have 30 days to send data breach notifications 1 day, 7 hours ago | www.bleepingcomputer.com

breach breach notifications data data breach +14

US arrests suspects behind $73M ‘pig butchering’ laundering scheme 1 day, 8 hours ago | www.bleepingcomputer.com

arrests charged crime cryptocurrency +11

WebTPA data breach impacts 2.4 million insurance policyholders 1 day, 9 hours ago | www.bleepingcomputer.com

breach data data breach department +8

Five charged for cyber schemes to benefit North Korea's weapons program 2 days, 4 hours ago | www.bleepingcomputer.com

charged cyber department generated +14

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

COMM Penetration Tester (PenTest-2), Chantilly, VA OS&CI Job #368

@ Allen Integrated Solutions | Chantilly, Virginia, United States

View on infosec-jobs.com

Consultant Sécurité SI H/F Gouvernance - Risques - Conformité

@ Hifield | Sèvres, France

View on infosec-jobs.com

Infrastructure Consultant

@ Telefonica Tech | Belfast, United Kingdom

View on infosec-jobs.com

all InfoSec news

CISA says GitLab account takeover bug is actively exploited in attacks

More from www.bleepingcomputer.com / BleepingComputer

Jobs in InfoSec / Cybersecurity

Information Security Engineers

Technology Security Analyst

Senior Cyber Security Analyst

COMM Penetration Tester (PenTest-2), Chantilly, VA OS&CI Job #368

Consultant Sécurité SI H/F Gouvernance - Risques - Conformité

Infrastructure Consultant