News

GitLab patches high severity account takeover, missing auth issues
GitLab has released security updates to address multiple vulnerabilities in the company's DevSecOps platform, including ones ...
CSO Online15h
Unpatched holes could allow takeover of GitLab accounts
CVE-2025-0673, a vulnerability that can cause a denial of service by triggering an infinite redirect loop, which would cause ...
Study: OpenAI Has Been Breached More Than 1000 Times
In the study, it was revealed that half of the biggest LLM providers on the market have experienced data breaches. More ...
The Hacker News3h
Apple Zero-Click Flaw in Messages Exploited to Spy on Journalists Using Paragon Spyware
Apple patched zero-day flaws exploited to deploy Paragon’s Graphite spyware targeting journalists and civil society, raising ...
SecurityWeek1h
Critical Vulnerability Exposes Many Mitel MiCollab Instances to Remote Hacking
Mitel has announced patches for a MiCollab path traversal vulnerability that can be exploited remotely without authentication.
SecurityWeek23h
‘EchoLeak’ AI Attack Enabled Theft of Sensitive Data via Microsoft 365 Copilot
Microsoft recently patched CVE-2025-32711, a vulnerability that could have been used for zero-click attacks to steal data ...
Infosecurity Magazine52m
Microsoft 365 Copilot: New Zero-Click AI Vulnerability Allows Corporate Data Theft
Researchers have found a flaw in Microsoft 365 Copilot that allows the exfiltration of sensitive corporate data with a simple ...