GitLab (Community and Enterprise Editions) Data Breach
GitLab (Community and Enterprise Editions) experienced a data breach that was reported on November 3, 2021. GitHub Community and Enterprise Editions that utilize the ability to upload images through GitLab Workhorse are vulnerable to remote code execution. Workhorse passes image file extensions through Exif
Key Facts
- Organization
- GitLab (Community and Enterprise Editions)
- Date Reported
- November 3, 2021
- Incident Type
- ransomware
- Industry
- Technology
- Severity Score
- 6/10
- Confidence Level
- high
- Tags
Source
View original source - External link to primary source documentation
Understanding ransomware Incidents
Ransomware attacks encrypt organizational data and demand payment for recovery. They often involve data exfiltration before encryption, enabling double extortion. Organizations should maintain offline backups and incident response plans.