Threat Post

Session Hijacking Bug Exposed GitLab Users Private Tokens

GitLab, the popular web-based Git repository manager, fixed a vulnerability recently that could have opened its users up to session hijacking attacks. GitLab, the popular web-based Git repository ...
Infosecurity-magazine.com

GitLab Vulns Could Lead to Session Hijacking

During a recent pen test of GitLab, Imperva researchers were surprised to come across a vulnerability that leaves users exposed to session hijacking attacks. The vulnerability stems from the type of ...
PR Newswire

Session launches testnet incentive program ahead of token launch

MELBOURNE, Australia, July 16, 2024 /PRNewswire/ -- Session, the encrypted messaging app, has announced a testnet incentive program as it gears up to launch a new utility token called 'Session Token'.
Dark Reading

Why Tokens Are Like Gold for Opportunistic Threat Actors

Authentication tokens aren't actual physical tokens, of course. But when these digital identifiers aren't expired regularly or pinned for use by a specific device only, they may as well be made of ...
IT World Canada

Atlassian admins warned of session cookie vulnerabilty

IT administrators with applications from Atlassian — including Jira, Confluence, Trello and BitBucket — are being warned of a vulnerability in their session cookies. The way to close this serious hole ...