Multiple vulnerabilities discovered in GitHub Desktop and other Git-related projects could allow hackers to gain unauthorized access to a user’s Git credentials. The flaws, found by GMO Flatt Security researcher Ry0taK, could lead to credential leaks due to improperly handled messages. GitHub has advised users to update to the latest version to protect against these vulnerabilities, or avoid running git clone with –recurse-submodules against untrusted repositories.
UAC-0063 Expands Cyber Attacks to European Embassies Using Stolen Documents
Advanced persistent threat (APT) group UAC-0063 is using legitimate documents obtained from infiltrated victims to target others with malware dubbed HATVIBE. The group, linked to
