-
Hackers steal 15,000 cloud credentials from exposed Git config files
A global large-scale dubbed "EmeraldWhale" exploited misconfigured Git configuration files to steal over 15,000 cloud account credentials from thousands of private repositories.
- October 30, 2024
- 10:00 AM
0
-
Bitbucket artifact files can leak plaintext authentication secrets
Threat actors were found breaching AWS accounts using authentication secrets leaked as plaintext in Atlassian Bitbucket artifact objects.
- May 21, 2024
- 03:05 PM
0
-
Sponsored Content
Free shadow SaaS inventory + security insightsDiscover all SaaS accounts ever created by anyone in your org, in minutes, along with insights on security risks and spend. Save time, money and effort by curbing SaaS sprawl and automating tasks like offboarding and user access reviews. Free trial.
-
Hackers can abuse Microsoft Office executables to download malware
The list of LOLBAS files - legitimate binaries and scripts present in Windows that can be abused for malicious purposes, will include the main executables for Microsoft's Outlook email client and Access database management system.
- August 03, 2023
- 11:48 AM
- 2
-
Git patches two critical remote code execution security flaws
Git has patched two critical severity security vulnerabilities that could allow attackers to execute arbitrary code after successfully exploiting heap-based buffer overflow weaknesses.
- January 17, 2023
- 06:26 PM
- 0
-
Learn how to build software with this $29 Python and Git training
The Python Programming & Git Certification Bundle helps you master both tools, with nine full-length video courses. The training is worth $1,800, but you can grab it today for only $28.99.
- December 27, 2021
- 07:16 AM
- 0
-
Microsoft revokes insecure SSH keys for Azure DevOps customers
Microsoft revoked insecure SSH keys some Azure DevOps have generated using a GitKraken git GUI client version impacted by an underlying issue found in one of its dependencies.
- October 12, 2021
- 08:00 AM
- 0
-
Learn how to use Python and Git to improve your productivity
The Python Programming & Git Certification Bundle helps you get started, with nine courses on Python, Git, and YAML. The training is worth $1,800, but you can get it today for just $28.99.
- October 10, 2021
- 08:21 AM
- 0
-
GitHub urges users to enable 2FA after going passwordless
GitHub is urging its user base to toggle on two-factor authentication (2FA) after deprecating password-based authentication for Git operations.
- August 18, 2021
- 02:00 PM
- 0
-
GitHub deprecates account passwords for authenticating Git operations
GitHub has announced today that account passwords will no longer be accepted for authenticating Git operations starting tomorrow.
- August 12, 2021
- 06:10 PM
- 1
-
Learn how to deploy cloud apps with 98 hours of GitOps training
The 2021 Ultimate GitOps Certification Bundle helps you break into this lucrative niche, with 11 full-length video courses packed with information. It's worth $2,200, but you can get the bundle today for only $34.99
- June 17, 2021
- 07:23 AM
- 0
-
GitHub now supports security keys when using Git over SSH
GitHub has added support for securing SSH Git operations using FIDO2 security keys for added protection from account takeover attempts.
- May 10, 2021
- 04:09 PM
- 0
-
Linux bans University of Minnesota for committing malicious code
Linux kernel project maintainers have imposed a ban on the University of Minnesota (UMN) from contributing to the open-source Linux project after a group of UMN researchers were caught submitting a series of malicious code commits, or patches that deliberately introduced security vulnerabilities in the official Linux project.
- April 21, 2021
- 01:08 PM
- 1
-
Researchers hacked Indian govt sites via exposed git and env files
Researchers have now disclosed more information on how they were able to breach multiple websites of the Indian government. The full findings disclosed today shed light on the routes leveraged by the researchers, including finding exposed .git directories and .env files on some of these systems.
- March 12, 2021
- 11:46 AM
- 0
-
United Nations data breach exposed over 100k UNEP staff records
This week, researchers have responsibly disclosed a vulnerability by exploiting which they could access over 100K private records of United Nations Environmental Programme (UNEP). The data breach stemmed from exposed Git directories which let researchers clone Git repositories and gather PII of a large number of employees.
- January 11, 2021
- 01:52 AM
- 5
-
Get 98% off the Complete 2020 Cloud Certification Training Bundle
Get 98% off a twelve-course bundle covering AWS, Amazon S3, Microsoft, GIT, and Ansible that helps you get started in a lucrative cloud computing career.
- November 19, 2020
- 06:19 PM
- 0
-
Attackers Wiping GitHub and GitLab Repos, Leave Ransom Notes
Attackers are targeting GitHub, GitLab, and Bitbucket users, wiping code and commits from multiple repositories according to reports and leaving behind only a ransom note and a lot of questions.
- May 03, 2019
- 05:42 PM
- 0
-
Git Project Patches Remote Code Execution Vulnerability in Git
The Git Project announced yesterday a critical arbitrary code execution vulnerability in the Git command line client, Git Desktop, and Atom that could allow malicious repositories to remotely execute commands on a vulnerable machine.
- October 06, 2018
- 01:22 PM
- 0
-
Malicious Git Repository Can Lead to Code Execution on Remote Systems
The developers behind Git and various companies providing Git repository hosting services have pushed out a fix to patch a dangerous vulnerability in the Git source code versioning software.
- May 30, 2018
- 04:46 AM
- 0
.png)
