Hackers are exploiting critical GitLab password reset vulnerability - here's what you need to know

Hackers are exploiting critical GitLab password reset vulnerability - here's what you need to know

Briefly

CISA warned that this class of security flaws are 'frequent attack vectors' for cyber criminals, due to their simplicity to exploit, and thus pose significant risks to enterprises.

ITProhttps://www.itpro.com/security/hackers-are-exploiting-critical-gitlab-password-reset-vulnerability-heres-what-you-need-to-know

GitLab noted in the January advisory that organizations that have 2FA enabled should be immune to this attack, although it advised users who have received reset emails without triggering them to reset their credentials as soon as possible.

ITProhttps://www.itpro.com/security/hackers-are-exploiting-critical-gitlab-password-reset-vulnerability-heres-what-you-need-to-know