GitLab has issued a critical security alert regarding a severe vulnerability in its GitLab Community and Enterprise editions, potentially allowing attackers to execute pipeline jobs as other users. With over 30 million registered users and adoption by more than 50% of Fortune 100 companies, including T-Mobile, Goldman Sachs, Airbus, Lockheed Martin, Nvidia, and UBS, this […]
A recent data breach at Fujitsu, a prominent Japanese tech giant, has resulted in the potential compromise of customer information. The company confirmed the incident in a statement, revealing that malware infiltrated its systems in March of 2024. Unlike a typical ransomware attack, this cyberattack employed sophisticated techniques to evade detection while exfiltrating sensitive data. […]
Cisco’s NX-OS zero-day vulnerability (CVE-2024-20399) has been actively exploited by the Chinese state-sponsored threat actor known as Velvet Ant, highlighting the urgent need for cybersecurity professionals and network administrators to secure affected systems. In a forensic investigation led by Sygnia, it was discovered that Velvet Ant gained administrator-level credentials to access Cisco Nexus switches and […]