Security Boulevard

SAML vs LDAP: Protocol Comparison for Authentication & Directory Services

Deep dive comparison of SAML and LDAP for CTOs. Learn the differences in authentication, directory services, and how to scale Enterprise SSO.
InfoWorld

GitLab 2FA login protection bypass lets attackers take over accounts

The platform warns users of on-premises versions to upgrade to the latest versions; SaaS and web versions have been patched.
The Hacker News

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

A flaw in the binary-parser npm package before version 2.3.0 lets attackers execute arbitrary JavaScript via unsanitized parser input.

Pentera Labs warns vulnerable demo apps are being actively exploited in the wild

Moreover, many of the vulnerable apps are under active exploitation. About 20% of exposed instances contained artifacts ...