Threat actors are exploiting a vulnerability in Gitea’s reverse-proxy authentication mechanism to access internet-accessible instances by supplying only a valid username.
Iran-linked Cavern Manticore hackers used a modular C&C framework, likely built with AI assistance, to target Israeli ...