Zoom and GitLab Patch RCE, DoS, and 2FA Bypass Vulnerabilities

Both platforms serve as backbone infrastructure for remote work and software development, making these flaws particularly dangerous for business continuity.
InfoQ

GitLab 9 Brings Subgroups, Deploy Boards, and Integrated Monitoring

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Dark Reading

GitLab Sends Users Scrambling Again With New CI/CD Pipeline Takeover Vuln

For the second time in less than a month GitLab has users scrambling to address a critical vulnerability in the community and enterprise editions of its DevOps ...
CSO Online

GitLab 2FA login protection bypass lets attackers take over accounts

The platform warns users of on-premises versions to upgrade to the latest versions; SaaS and web versions have been patched.
Bleeping Computer

Over 5,300 GitLab servers exposed to zero-click account takeover attacks

Over 5,300 internet-exposed GitLab instances are vulnerable to CVE-2023-7028, a zero-click account takeover flaw GitLab warned about earlier this month. The critical (CVSS score: 10.0) flaw allows ...
Business Insider

GitLab Introduces DevSecOps with the release of GitLab 12.0 - The First to Bridge Development, Security, and Operations All in One Application

SAN FRANCISCO, June 20, 2019 (GLOBE NEWSWIRE) -- Today GitLab, the single application for the DevOps lifecycle, is releasing 12.0 to help enterprises transform and accelerate DevOps adoption by ...