GitHub Enterprise Server vulnerable to critical auth bypass flaw

Published on August 21, 2024

A critical vulnerability affecting multiple versions of GitHub Enterprise Server could be exploited to bypass authentication and enable an attacker to gain administrator privileges on the machine. [...]

Continue reading on website
Other news

It's Time To Untangle the SaaS Ball of Yarn

August 21, 2024
It's no great revelation to say that SaaS applications have changed the way we operate, both in our personal and professional lives. We routinely rely on cloud-based and remote applications to conduct our basic functions, with the result that the only true perimeter of our networks has become the identities with which we log into these services.Unfortunately – as is so often the case – our

North Korean Hackers Deploy New MoonPeak Trojan in Cyber Campaign

August 21, 2024
A new remote access trojan called MoonPeak has been discovered as being used by a state-sponsored North Korean threat activity cluster as part of a new campaign.Cisco Talos attributed the malicious cyber campaign to a hacking group it tracks as UAT-5394, which it said exhibits some level of tactical overlaps with a known nation-state actor codenamed Kimsuky.MoonPeak, under active development