About The Daily Swig

Latest threats Bug bounty For devs Deep dives More About

Web security vulnerabilities Network security vulnerabilities Cloud security Zero-day news Supply chain attacks

View all web security news

Prototype pollution

Prototype pollution project yields another Parse Server RCE

Bug bounty news VDPs Bug Bounty Radar

View all bug bounty news

Bug Bounty Radar

The latest programs for February 2023

DevSecOps Security best practices Dev stack tech

View all dev related news

All Day DevOps

AppSec engineer keynote says Log4j revealed lessons were not learned from the Equifax breach

Deep dives Interviews

View all of the latest features

Infosec beginner?

A rough guide to launching a career in cybersecurity

Industry news Enterprise security news Web hacking tools Events

View all infosec industry news

Cybersecurity conferences

A schedule of events in 2022 and beyond

Emma Woollacott, Features writer

@EmmaWoollacott

Emma Woollacott writes about business, technology and digital rights for titles including the BBC, Forbes, and Private Eye. She lives in Oxford, but escapes to Sri Lanka whenever she can.

Get in touch

NIST plots biggest ever reform of Cybersecurity Framework23 February 2023 at 15:55 UTC Facebook two-factor authentication bypass issue patched27 January 2023 at 11:50 UTC How to become a penetration tester: Part 2 – ‘Mr Hacking’ John Jackson on the virtue of ‘endless curiosity’ 20 December 2022 at 16:52 UTC How to become a penetration tester: Part 1 – your path into offensive security testing29 November 2022 at 15:13 UTC Critical authentication bug in Fortinet products actively exploited in the wild25 October 2022 at 13:53 UTC Security certification body (ISC)² defends ‘undemocratic’ bylaw changes19 October 2022 at 15:11 UTC Dex patches authentication bug that enabled unauthorized access to client applications06 October 2022 at 16:00 UTC Matrix address flaws that break message encryption assurances04 October 2022 at 14:49 UTC Researchers net $46k for Akamai misconfiguration vulnerability04 October 2022 at 10:41 UTC Vulnerability in Apache Pulsar allowed manipulator-in-the-middle attacks28 September 2022 at 15:30 UTC ManageEngine vulnerability posed code injection risk for password management software09 September 2022 at 12:46 UTC WatchGuard firewall exploit threatens appliance takeover01 September 2022 at 13:08 UTC Multiple cloud vendors impacted by PostgreSQL vulnerability that exposed enterprise databases16 August 2022 at 12:40 UTC ParseThru: HTTP parameter smuggling flaw uncovered in several Go applications04 August 2022 at 10:55 UTC GitHub enhances 2FA for NPM, improves security and manageability28 July 2022 at 15:32 UTC One in five data breaches due to software supply chain compromise, IBM report warns27 July 2022 at 15:04 UTC Critical security vulnerability in Grails could lead to remote code execution26 July 2022 at 13:01 UTC WordPress plugin security audit unearths dozens of vulnerabilities impacting 60,000 websites21 July 2022 at 13:33 UTC LDAP Account Manager bug poses unauthenticated remote code execution risk19 July 2022 at 10:52 UTC SMEs slow to adopt MFA – study07 July 2022 at 14:10 UTC Ransomware market evolution results in fewer variants, but rise in off-the-shelf cybercrime kits continues28 June 2022 at 12:26 UTC Splunk patches critical vulnerability while users push for legacy updates23 June 2022 at 12:03 UTC RubyGems trials 2FA-by-default in code repo’s latest security effort17 June 2022 at 12:17 UTC Indian VPN providers resist incoming data-logging law08 June 2022 at 10:28 UTC Vast majority of ethical hackers keen to spend more time bug bounty hunting – report07 June 2022 at 10:25 UTC US export ban on hacking tools tweaked after public consultation01 June 2022 at 15:54 UTC Yik Yak fixes information disclosure bug that leaked users’ GPS location23 May 2022 at 14:10 UTC Facebook account takeover: Researcher scoops $40k bug bounty for chained exploit18 May 2022 at 11:11 UTC Marcus Hutchins on halting the WannaCry ransomware attack – ‘Still to this day it feels like it was all a weird dream’12 May 2022 at 14:52 UTC RuTube hack: Russian video platform denies loss of source code following cyber-attack11 May 2022 at 11:53 UTC GitHub offers post-mortem on recent security breach29 April 2022 at 10:44 UTC XSS vulnerability in open source tool PrivateBin patched18 April 2022 at 11:30 UTC PacketStreamer: New tool can aid research by revealing potential hacking behaviors11 April 2022 at 10:52 UTC US healthcare data breach impacts 85,000 law enforcement officers31 March 2022 at 10:46 UTC Apple Safari empowers developers to mitigate web flaws with WebKit CSP enhancements18 March 2022 at 11:53 UTC ‘Cybersecurity incident’ at Ubisoft disrupts operations, forces company-wide password reset14 March 2022 at 13:46 UTC Microsoft praised for quickly resolving Azure Automation cloud security vulnerability11 March 2022 at 11:52 UTC DNA data of sexual assault victims exposed in breach at US laboratory25 February 2022 at 12:00 UTC Google Groups unsubscribe feature abused to remove members without consent23 February 2022 at 11:52 UTC Microsoft bolsters Edge browser security with enhanced features17 February 2022 at 15:50 UTC

Latest Posts