Snafu š¦:linux: on Nostr: So, in case anyone still thinks that patching and security in general is not so ...
So, in case anyone still thinks that patching and security in general is not so important nowadays: Found already several tries of exploiting the recent critical CVE-2023-7028 vulnerability in the logs of my GitLab instance although it was only published a few days ago.
Conclusion:
ā
Install security updates *literally* ASAP.
ā
Turn on mandatory 2FA for all users.
#GitLab #CVE #2FA #Security #Hacker #Update
Published at
2024-01-15 22:40:45Event JSON
{
"id": "6ae7ea7fd51b673517e973e0bc38d455d544a6dfcd8b6f0e1b2aa981a279c865",
"pubkey": "be0aa16d5b35979fe664f6a957c5aa02998f2742f1f563dc1d0a6f96e874aa41",
"created_at": 1705358445,
"kind": 1,
"tags": [
[
"t",
"update"
],
[
"t",
"hacker"
],
[
"t",
"security"
],
[
"t",
"2fa"
],
[
"t",
"cve"
],
[
"t",
"gitlab"
],
[
"proxy",
"https://digitalcourage.social/users/snafu/statuses/111762371067409784",
"activitypub"
]
],
"content": "So, in case anyone still thinks that patching and security in general is not so important nowadays: Found already several tries of exploiting the recent critical CVE-2023-7028 vulnerability in the logs of my GitLab instance although it was only published a few days ago.\n\nConclusion: \nā
Install security updates *literally* ASAP.\nā
Turn on mandatory 2FA for all users. \n\n#GitLab #CVE #2FA #Security #Hacker #Update",
"sig": "e93056e9220d1a419169c9477e56cfbbbca5e0441ab08a98fe92ac8b504dac4e30d264070094d2ba823d9c5b8273d4abf3a5f973a738f0cdd4dbcae8a71445e4"
}
