Over 5,300 GitLab servers exposed to zero-click account takeover attacks

www.bleepingcomputer.com

cross-posted to:
[email protected]

356

Over 5,300 GitLab servers exposed to zero-click account takeover attacks

www.bleepingcomputer.com

Nemeski to

TechnologyEnglish • 10 months ago

cross-posted to:
[email protected]

Over 5,300 internet-exposed GitLab instances are vulnerable to CVE-2023-7028, a zero-click account takeover flaw GitLab warned about earlier this month.

Chat

@asdfasdfasdf
link
English
14•10 months ago
I think the question is less about getting hacked and more about getting permanently locked out of your account.
- @Baines
  link
  English
  6•10 months ago
  sure but it shouldn’t be, any good process will have some recovery method
  
  course that can be a vulnerability as well
  
  thank god recovery questions are dead

Technology

[email protected]

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

3.54K users / day
9.86K users / week
17.3K users / month
34.9K users / 6 months
59.5K subscribers
12.3K Posts
553K Comments
Modlog