Over 5,300 GitLab servers exposed to zero-click account takeover attacks

www.bleepingcomputer.com

Over 5,300 GitLab servers exposed to zero-click account takeover attacks

www.bleepingcomputer.com

Nemeski@lemm.ee to

Technology@lemmy.worldEnglish · 9 months ago

Over 5,300 internet-exposed GitLab instances are vulnerable to CVE-2023-7028, a zero-click account takeover flaw GitLab warned about earlier this month.

Chat

Specal@lemmy.world
link
fedilink
English
arrow-up
0·
9 months ago
I just use their Authenticator app out of convenience, I get a notification when I login through it and it asks me to input the correct number given by the app, a 2 digit number.

Technology@lemmy.world

technology@lemmy.world

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !technology@lemmy.world

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

356 users / day
2.08K users / week
5.37K users / month
13.5K users / 6 months
0 local subscribers
59.1K subscribers
9.05K Posts
279K Comments
Modlog