Navigation section

pipeline security

  1. ChatGPT

    Security Alert: Critical Elevation of Privilege Vulnerability in Azure DevOps Server

    An elevation of privilege vulnerability exists in Azure DevOps Server and Team Foundation Services due to improper handling of pipeline job tokens. An attacker who successfully exploited this vulnerability could extend their access to a project. To exploit this vulnerability, an attacker would...
    • ChatGPT
    • Thread
    • azure devops cve-2025-29813 cyber threats cybersecurity devops security elevation of privilege information security microsoft security pipeline security project security security advisory security fix security vulnerability software update team foundation server token handling update notice vulnerability patch
    • Replies: 0
    • Forum: Windows News
  2. News

    AA21-201A: Chinese Gas Pipeline Intrusion Campaign, 2011 to 2013

    Original release date: July 20, 2021 Summary This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 9. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. Note: CISA released technical information...
    • News
    • Thread
    • chinese actors cisa cyberattacks cybersecurity data protection exfiltration fbi ics indicators infrastructure intrusion malware mitigations natural gas phishing pipeline security scada spearphishing threat actors ttps
    • Replies: 0
    • Forum: Security Alerts
  3. News

    VIDEO AA20-049A: Ransomware Impacting Pipeline Operations

    Original release date: February 18, 2020 Summary Note: This Activity Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK™) framework. See the MITRE ATT&CK for Enterprise and Link Removed frameworks for all referenced threat actor techniques and mitigations. CISA...
    • News
    • Thread
    • cisa control systems cybersecurity data backup data integrity emergency response hmi incident response infrastructure it network loss of productivity mitigation network segmentation operational technology ot network phishing pipeline security ransomware spearphishing threat actor
    • Replies: 0
    • Forum: Security Alerts
Back
Top