all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

GitLab affected by GitHub-style CDN flaw allowing malware hosting

Add to bookmarks
April 22, 2024, 3:05 p.m. | Ax Sharma

BleepingComputer www.bleepingcomputer.com

BleepingComputer recently reported how a GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with Microsoft repositories, making the files appear trustworthy. It turns out, GitLab is also affected by this issue and could be abused in a similar fashion. [...]

bleepingcomputer cdn decision design fashion files flaw github gitlab hosting issue making malware microsoft repositories security threat threat actors urls

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

Ransomware gang targets Windows admins via PuTTy, WinSCP malvertising 13 hours ago | www.bleepingcomputer.com
administrators ads download fake +13
Android malware Grandoreiro returns after police disruption 18 hours ago | www.bleepingcomputer.com
accounts android android banking trojan android malware +16
Banking malware Grandoreiro returns after police disruption 18 hours ago | www.bleepingcomputer.com
accounts banking banking malware banking trojan +14
The Week in Ransomware - May 17th 2024 - Mailbombing is back 1 day, 10 hours ago | www.bleepingcomputer.com
attention back breachforums data +10
Microsoft to start enforcing Azure multi-factor authentication in July 1 day, 13 hours ago | www.bleepingcomputer.com
authentication azure factor july +8
SEC: Financial orgs have 30 days to send data breach notifications 1 day, 16 hours ago | www.bleepingcomputer.com
breach breach notifications data data breach +14
US arrests suspects behind $73M ‘pig butchering’ laundering scheme 1 day, 16 hours ago | www.bleepingcomputer.com
arrests charged crime cryptocurrency +11
WebTPA data breach impacts 2.4 million insurance policyholders 1 day, 17 hours ago | www.bleepingcomputer.com
breach data data breach department +8
Five charged for cyber schemes to benefit North Korea's weapons program 2 days, 12 hours ago | www.bleepingcomputer.com
charged cyber department generated +14

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Senior - Penetration Tester

@ Deloitte | Madrid, España
View on infosec-jobs.com

Associate Cyber Incident Responder

@ Highmark Health | PA, Working at Home - Pennsylvania
View on infosec-jobs.com

Senior Insider Threat Analyst

@ IT Concepts Inc. | Woodlawn, Maryland, United States
View on infosec-jobs.com