GitLab has released security updates for both the Community and Enterprise Edition to address two critical vulnerabilities, one of them allowing account hijacking with no user interaction. The vendor ...
A remote prompt injection flaw in GitLab Duo allowed attackers to steal private source code and inject malicious HTML. GitLab has since patched the issue. A newly disclosed vulnerability in GitLab Duo ...
Researchers tracked a seven-week campaign that leveraged trusted platforms and AI-generated trust to trick users into executing malicious commands and exposing enterprise credentials. Threat actors ...