The vulnerability stems from the type of session tokens used by GitLab.
MacEwan University Defrauded Out of $11.8mn in Phishing Attack
Staff fell for a business email compromise gambit after receiving a request to change banking info for a vendor.
Juniper to Acquire Cyphort
Juniper will use the buy to shore up its own cyber-portfolio—including its virtualized security offerings.
Foreign Firms Should Fear New Chinese Cyber-Law: Report
Source code reviews could generate exploits for Chinese spies
Nottinghamshire County Council Exposes Elderly, Disabled PII for 5 Years
The council has been fined £70,000 by the Information Commissioner’s Office.
Cyber-squatters Target Luxury Brands from Fendi to Prada
These domains are often used in phishing and scams, including pay-per-click ads, for-profit survey sites and social media scams.
Ransomware Infections on Course to Top 2016 Figures
Symantec claims organizations are increasingly under threat
Half of Global Firms Failing on PCI Compliance
Verizon says key in-house skills are often missing
Locky Ransomware Rears its Head in Big August Campaigns
It’s back with a second wave of new but related attacks that build on a variant uncovered in early August.
Jimmy Nukebot Explodes on the Scene, Transforming NeutrinoPOS
It’s no longer in the banking business. Rather, it’s designed to help bad actors do so much more.