Serious security hole plugged in infosec tool binwalk Adam Bannister03 February 2023 at 16:36 UTC Updated: 17 February 2023 at 13:20 UTC... 2023-2-4 00:36:49 | 阅读: 4 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net binwalk kaiser security pfs reverse

Truffle Security relaunches XSS Hunter tool with new features Popular hacking aid now available with CORS misconfig dete... 2023-2-2 23:8:23 | 阅读: 5 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net security truffle ayrey xsshunter

Researcher drops Lexmark RCE zero-day rather than sell vuln ‘for peanuts’ Charlie Osborne01 February 2023 at 12:18 UTC Updated: 17 February 2023 at 13:10 UTC... 2023-2-1 20:18:8 | 阅读: 8 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net lexmark geissler security printer offered

Bug Bounty Radar // The latest bug bounty programs for February 2023 Adam Bannister31 January 2023 at 15:13 UTC Updated: 28 February 2023 at 18:00 UTC... 2023-1-31 23:13:57 | 阅读: 6 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net reward publicmax xchange security

Tell us what you think: The Daily Swig reader survey 2023 Jessica Haworth29 January 2023 at 14:03 UTC... 2023-1-29 22:3:40 | 阅读: 5 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net security burp draw swag readers

Deserialized web security roundup: ‘Catastrophic cyber events’, another T-Mobile breach, more LastPass problems Adam Bannister27 January 2023 at 16:48 UTC Updated: 27 February 2023 at 15:33 UTC... 2023-1-28 00:48:16 | 阅读: 4 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net security swig github

Burp Suite roadmap update: January 2023 Matt Atkinson |27 January 2023 at... 2023-1-27 22:48:49 | 阅读: 34 | 收藏 | PortSwigger Blog - portswigger.net burp roadmap wip client

Facebook two-factor authentication bypass issue patched Emma Woollacott27 January 2023 at 11:50 UTC Updated: 17 February 2023 at 14:20 UTC... 2023-1-27 19:50:0 | 阅读: 9 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net facebook attacker security bypass victim

Packetlabs Ltd delivers advanced testing capabilities with Burp Suite Certified Practitioners Emma Stocks |27 January 2023 at 1... 2023-1-27 19:11:24 | 阅读: 26 | 收藏 | PortSwigger Blog - portswigger.net burp testers packetlabs ltd denis

Ruby on Rails apps vulnerable to data theft through Ransack search Several applications were vulnerable to brute-force attack... 2023-1-27 01:27:49 | 阅读: 4 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net ransack security euler rails association

Trellix automates tackling open source vulnerabilities at scale Charlie Osborne26 January 2023 at 13:52 UTC Updated: 26 January 2023 at 13:55 UTC... 2023-1-26 21:52:42 | 阅读: 7 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net trellix schulz python repository tarfile

Yellowfin tackles auth bypass bug trio that opened door to RCE Adam Bannister25 January 2023 at 16:23 UTC... 2023-1-26 00:23:21 | 阅读: 5 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net bypass routes hardcoded yellowfin

Bitwarden responds to encryption design flaw criticism Password vault vendor accused of making a hash of encrypti... 2023-1-25 23:47:46 | 阅读: 8 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net iterations bitwarden security lastpass encryption

IoT vendors faulted for slow progress in setting up vulnerability disclosure programs Manufacturer complacency ‘translates into an unacceptable... 2023-1-24 21:22:49 | 阅读: 6 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net security iotsf horse rogers copper

AWS patches bypass bug in CloudTrail API monitoring tool Charlie Osborne23 January 2023 at 13:01 UTC... 2023-1-23 21:1:0 | 阅读: 6 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net cloudtrail security frichette datadog bypass

Git security audit reveals critical overflow bugs Uncovered vulnerabilities include several high, medium, an... 2023-1-20 23:0:0 | 阅读: 11 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net gitlab security repository github

Popular password managers auto-filled credentials on untrusted websites Dashlane, Bitwarden, and Safari all cited by Google resear... 2023-1-20 20:9:52 | 阅读: 5 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net security dashlane bitwarden swig filling

Google pays hacker duo $22k in bug bounties for flaws in multiple cloud projects Six payouts issued for bugs uncovered in Theia, Vertex AI,... 2023-1-20 00:29:29 | 阅读: 10 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net sreeram compute cloud gcp ashok

WAGO fixes config export flaw threatening data leak from industrial devices Charlie Osborne18 January 2023 at 15:34 UTC Updated: 18 January 2023 at 15:52 UTC... 2023-1-18 23:34:13 | 阅读: 6 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net wago lukavsky security onekey php

US government announces third Hack The Pentagon challenge Jessica Haworth17 January 2023 at 14:04 UTC Updated: 13 February 2023 at 14:44 UTC... 2023-1-17 22:4:9 | 阅读: 6 | 收藏 | The Daily Swig | Cybersecurity news and views - portswigger.net dod security dhs facing