Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

2 headlines in this view

Showing 2 most recent headlines Filtered view

Dark Reading 1 year, 10 months ago

GitLab Sends Users Scrambling Again With New CI/CD Pipeline Takeover Vuln

The bug (CVE-2024-6385) is similar — but not identical — to a critical flaw GitLab patched just two weeks ago.

More from Dark Reading 13 Jul 2024, 8:24 a.m. CVE-2024-6385 CVE Critical Flaw Patch

Dark Reading 1 year, 10 months ago

Likely two separate threat actors are using the just-patched CVE-2024-38112 in targeted, concurrent infostealer campaigns.

More from Dark Reading 11 Jul 2024, 7:59 a.m. Actively exploited CVE-2024-38112 0-Day CVE Microsoft Patch Threat Actor