![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiRlvo9emWd80B2COPWjo0e368-zkZy2AydvQwPGsxOsDw-AoT3vIWrgcydY4nwnOqftr47b9rK2AQH_ntWwBcq06AWi_L7UzodIFzUzYNu3xQFgdEjDgxGiCIAVGlVHaiWOvpbZBJxuC_MRMdzT_n7F5BnSkIGAXvA7sgMSiY5WCuJ5gJ2Wwc1HrB4NDOZ/s1600/hacking.jpg)
A new, financially motivated operation dubbed LABRAT has been observed weaponizing a now-patched critical flaw in GitLab as part of a cryptojacking and proxyjacking campaign.
“The attacker utilized undetected signature-based tools, sophisticated and stealthy cross-platform malware, command-and-control (C2) tools which bypassed firewalls, and kernel-based rootkits to hide their presence,” Sysdig
Source:: The Hackers News