Potential password spraying activitySecurity Issue

Components

Website, API, Git Operations, Container Registry, GitLab Pages, CI/CD - Hosted runners on Linux, CI/CD - Hosted runners on Windows, Background Processing, GitLab Customers Portal, Support Services, packages.gitlab.com, version.gitlab.com, forum.gitlab.com

Locations

Google Compute Engine, Azure, Digital Ocean, Zendesk, AWS



March 24, 2020 18:24 UTC
[Resolved] Our team noticed some potential password spraying activity that we suspect is taking advantage of vulnerable users on GitLab and likely other services. Here's a doc about 2FA on GitLab to keep you safe: docs.gitlab.com/ee/security/two_factor_authentication.html

Back to current status