Cybersecurity Today Cybersecurity Today: Red Hat Breach, CLOP Targets Oracle, and CISA Cuts Critical Support
4 snips
Oct 3, 2025 A recent breach of Red Hat's GitLab server raises alarms about exposed network maps and tokens. Meanwhile, the CLOP gang targets Oracle E-Business Suite clients, demanding ransoms for sensitive data. Surveys reveal Canadian businesses are overconfident in their cyber defenses, despite frequent attacks and low adoption of zero trust strategies. Additionally, the recent termination of CISA's critical support agreement poses significant risks for local governments amid a federal shutdown. Tune in for essential insights and urgent action items.
AI Snips
Chapters
Transcript
Episode notes
Self-Hosted GitLab Raises Customer Risk
- This was a self-managed GitLab instance, not GitHub, so customers are responsible for patching and hardening it.
- That distinction increases supply-chain and operational risk for affected clients who run self-hosted instances.
Rotate Compromised Consulting Credentials
- Revoke and rotate any tokens, keys, and database credentials issued to Red Hat Consulting since 2020 immediately.
- Hunt logs for unusual token use and check integrations for suspicious authentication and API activity.
CLOP Targets Systemic Enterprise Weaknesses
- CLOP's history of exploiting high-impact enterprise software shows this likely targets systemic EBS weaknesses rather than random victims.
- That pattern raises the expectation that many customers could be affected and need clear Oracle guidance.