Topic: ci/cd security

Sort by: Relevance | Date
  • CISA Alerts: Old GitLab Bug Actively Exploited in Attacks
    February 5, 2026

    CISA Alerts: Old GitLab Bug Actively Exploited in Attacks

    A critical, years-old GitLab vulnerability (CVE-2021-39935) is now being actively exploited, prompting urgent warnings from U.S. cybersecurity authorities. CISA has mandated federal agencies to patch this flaw within three weeks and strongly recommends all organizations do the same, as it allows ...

    Read More »
  • Cloud Security Is Lagging Behind
    December 25, 2025

    Cloud Security Is Lagging Behind

    The rapid adoption of cloud technologies has created a significant security gap, with development velocity outpacing protective controls and leaving systems vulnerable to sophisticated, fast-moving attacks. Complex multicloud environments and accelerated software deployment, including AI-generate...

    Read More »
  • 500 npm Packages Infected by Shai-Hulud Malware Leaking Secrets
    November 26, 2025

    500 npm Packages Infected by Shai-Hulud Malware Leaking Secrets

    Over 500 npm packages, including popular tools like Zapier and Postman, have been compromised by the Shai-Hulud malware, which steals developer secrets and uploads them to rapidly multiplying GitHub repositories. The attack uses trojanized versions of legitimate packages to inject malicious scrip...

    Read More »

Related Topics

cloud security (1) geographic distribution (1) data fragmentation (1) data exfiltration (1) federal agencies (1) incident response (1) supply chain attack (1) internet exposure (1)