GitHub has fixed three security flaws in its Enterprise Server product. One of these flaws was critical and allowed an attacker to gain administrative privileges. The most severe issue is called CVE-2024-6800. It has a CVSS score of 9.5. “On GitHub Enterprise Server instances that use SAML single sign-on (SSO) …

Ransomware attacks have increased a lot in the past year. Cybercriminals are using different tactics, so organizations need to monitor and investigate suspicious behaviors all the time. According to a new report from Malwarebytes, “Ransomware gangs have time and motivation on their side. They constantly evolve to respond to the …

Mandiant has found a new vulnerability in Azure Kubernetes Services (AKS) called “WireServing.” This flaw could have let attackers increase their privileges in a compromised cluster and access sensitive credentials without authorization. Kubernetes is a complex platform known for security challenges. A vulnerability in AKS clusters using “Azure CNI” and …