Brief

Brief #34: GitLab Zero-Click Hijack, Ivanti VPN Exploit and More

Explore Mandos Brief #34 for week 2 of 2024: GitLab's account takeover flaw, Ivanti VPN's APT exploitation, SpectralBlur backdoor, and latest ransomware decryptors.

5 min read
mandos brief week 02 of 2024

TL;DR


GitLab Critical Vulnerability Enables Account Takeover Without User Interaction

Ivanti VPN Zero-Day Exploited by Chinese APT to Deploy Custom Malware

Mandos Brief GPT

Analyze any cybersecurity topic 100 times faster by focusing on key takeaways and zero noise.

Try it out!

SpectralBlur is a New Stealthy macOS Backdoor from North Korea

Weaponized YouTube Channels Spreading Lumma Stealer

Decryptors Released for Black Basta and Babuk's Tortilla Ransomware Victims

Share This Post

Check out these related posts

Brief #51: VPN Decloaking Attack, Azure Health Bot Vulnerabilities, CISO Dissatisfaction, and Incident Response Challenges

  • Nikoloz Kokhreidze
by Nikoloz Kokhreidze | | 8 min read

Brief #50: Postman API Credential Leaks, DHS AI Threat Guidelines, Effective Risk Communication, Cybersecurity Analyst Insights

  • Nikoloz Kokhreidze
by Nikoloz Kokhreidze | | 8 min read

Brief #49: Palo Alto XDR Exploit, GPT-4 Vulnerability Exploitation, CISO Insights, and Top Cybersecurity Courses

  • Nikoloz Kokhreidze
by Nikoloz Kokhreidze | | 7 min read