Security News > 2025 > January > Clone2Leak attacks exploit Git flaws to steal credentials

Clone2Leak attacks exploit Git flaws to steal credentials

2025-01-27 16:36

A set of three distinct but related attacks, dubbed 'Clone2Leak,' can leak credentials by exploiting how Git and its credential helpers handle authentication requests. [...]

News URL

https://www.bleepingcomputer.com/news/security/clone2leak-attacks-exploit-git-flaws-to-steal-credentials/

#attack #credential #exploit #GIT

Related news

Threat Actors Exploit ClickFix to Deploy NetSupport RAT in Latest Cyber Attacks (source)
SonicWall firewall bug leveraged in attacks after PoC exploit release (source)
New “whoAMI” Attack Exploits AWS AMI Name Confusion for Remote Code Execution (source)
Chinese Hackers Exploit MAVInject.exe to Evade Detection in Targeted Cyber Attacks (source)
Ransomware gangs exploit Paragon Partition Manager bug in BYOVD attacks (source)
Hackers Exploit Paragon Partition Manager Driver Vulnerability in Ransomware Attacks (source)
Hackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMail (source)
How New AI Agents Will Transform Credential Stuffing Attacks (source)
Researchers Expose New Polymorphic Attack That Clones Browser Extensions to Steal Credentials (source)
Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility (source)

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.