Cybersecurity experts warn that sophisticated attackers are increasingly targeting CI/CD pipelines through misconfigurations in the OpenID Connect (OIDC) protocol. This vulnerability allows unauthorized access to sensitive resources. Researchers from Palo Alto Networks identified issues with OIDC implementations, particularly during the authorization phase, leading to potential exploitation via Poisoned Pipeline Execution (PPE) attacks. Organizations are advised to enhance their security configurations and practices.
Hackers Actively Exploiting Critical Exchange & SharePoint Server Vulnerabilities
Microsoft has warned that cybercriminals are increasingly exploiting critical vulnerabilities in on-premises Exchange and SharePoint Servers. New techniques like NTLM relay and credential leakage enable
