Critical Account Takeover in LiteSpeed Cache Plugin
There is a critical vulnerability in the LiteSpeed Cache plugin - Unauth Account Takeover in 6.5.0.1 affecting 5+ millions of sites.
Okta warns of "unprecedented" credential stuffing attacks on customers
Okta warns of an "unprecedented" spike in credential stuffing attacks targeting its identity and access management solutions, with some customer accounts breached in the attacks.
Over 5,300 GitLab servers exposed to zero-click account takeover attacks
Over 5,300 internet-exposed GitLab instances are vulnerable to CVE-2023-7028, a zero-click account takeover flaw GitLab warned about earlier this month.