Wallarm

2023 OWASP Top-10 Series: API6:2023 Unrestricted Access to Sensitive Business Flows

Sep 2, 2023 By Wallarm In Wallarm

Welcome to the 7th post in our weekly series on the new 2023 OWASP API Security Top-10 list, with a particular focus on security practitioners. This post will focus on API6:2023 Unrestricted Access to Sensitive Business Flows. In this series we are taking an in-depth look at each category – the details, the impact and what you can do about it.

Read Post

Wallarm

Read more about 2023 OWASP Top-10 Series: API6:2023 Unrestricted Access to Sensitive Business Flows

A CISO's Guide to Cloud Application Security

Sep 1, 2023 By Wallarm

The following guidelines will help senior stakeholders set strategy to secure modern applications, learning: Applications are the operational mechanism for how a modern enterprise conducts transactions and uses data. Whether internal or customer-facing, apps are critical for your successful business operations. That means securing apps should be a business priority.

Get Guide

Wallarm

Read more about A CISO's Guide to Cloud Application Security

Q2-2023 API ThreatStats Report

Sep 1, 2023 By Wallarm

In this comprehensive Q2-2023 report, we reflect on an intensified API threat landscape, underlining prevalent threat vectors, susceptible APIs, and new dimensions in the API security arena. With the inclusion of bug bounty analysis and our inaugural API Security Awards, this report provides granular insights into the current state of API security.

Get Report

Wallarm

Read more about Q2-2023 API ThreatStats Report

2023 OWASP Top-10 Series: API5:2023 Broken Function Level Authorization

Aug 26, 2023 By Wallarm In Wallarm

Welcome to the 6th post in our weekly series on the new 2023 OWASP API Security Top-10 list, with a particular focus on security practitioners. This post will focus on API5:2023 Broken Function Level Authorization. In this series we are taking an in-depth look at each category – the details, the impact and what you can do about it.

Read Post

Wallarm

Read more about 2023 OWASP Top-10 Series: API5:2023 Broken Function Level Authorization

API Abuse - Lessons from the Duolingo Data Scraping Attack

Aug 25, 2023 By Wallarm In Wallarm

It’s been reported that 2.6 million user records sourced from the Duolingo app are for sale. The attacker apparently obtained them from an open API provided by the company. There’s a more technical explanation available here. While we talk a lot about the vulnerabilities in the OWASP API Top-10 and the exploits associated with those vulnerabilities, this incident provides a good reminder that not all vulnerabilities are flaws in code. In fact, this API was working as designed.

Read Post

Wallarm

Read more about API Abuse - Lessons from the Duolingo Data Scraping Attack

Act Now to Prepare for New NCUA Cyber Incident Reporting Requirements

Aug 24, 2023 By Wallarm In Wallarm

We recently discussed the new SEC rule requiring all registered companies to report material cyber incidents within four (4) days.

Read Post

Wallarm

Read more about Act Now to Prepare for New NCUA Cyber Incident Reporting Requirements

Wallarm Demo: Orphan and Shadow API Detection

Aug 21, 2023 By Wallarm In Wallarm

Orphan APIs can lead to a host of unnecessary issues such as misallocated resources, maintenance issues, wasted development and testing time, and issues with maintainability, scalability, security and usability. Watch this quick demo to learn how Wallarm API Discovery helps you identify and manage any Orphan APIs in your portfolio.

View Video

Wallarm

API
Security

Read more about Wallarm Demo: Orphan and Shadow API Detection

Take Care of Orphan APIs with Wallarm

Aug 21, 2023 By Wallarm In Wallarm

The Wallarm API Discovery module has been further enhanced to enable customers to identify Orphan APIs and bring them under management. In this post we’ll discuss what Orphan APIs are, why they matter, and how to regain control of your API portfolio.

Read Post

Wallarm

Read more about Take Care of Orphan APIs with Wallarm

2023 OWASP Top-10 Series: API4:2023 Unrestricted Resource Consumption

Aug 19, 2023 By Wallarm In Wallarm

Welcome to the 5th post in our weekly series on the new 2023 OWASP API Security Top-10 list, with a particular focus on security practitioners. This post will focus on API4:2023 Unrestricted Resource Consumption. In this series we are taking an in-depth look at each category – the details, the impact and what you can do about it.

Read Post

Wallarm

Read more about 2023 OWASP Top-10 Series: API4:2023 Unrestricted Resource Consumption

Impact of the New SEC Cyber Incident Reporting Rules on the C-Suite and Beyond

Aug 18, 2023 By Wallarm In Wallarm

We recently hosted a compact and very engaging panel discussion about the new SEC Cyber Incident Reporting Rules due to come into effect later this year. We were fortunate to be joined by two well-known experts: In the post, we will *not* rehash what was said in the panel discussion. If you did not get to attend the live session, we invite you watch it on-demand – it’s 30 minutes well spent!

Read Post

Wallarm

Read more about Impact of the New SEC Cyber Incident Reporting Rules on the C-Suite and Beyond

Subscribe to Wallarm

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Wallarm

2023 OWASP Top-10 Series: API6:2023 Unrestricted Access to Sensitive Business Flows

A CISO's Guide to Cloud Application Security

Q2-2023 API ThreatStats Report

2023 OWASP Top-10 Series: API5:2023 Broken Function Level Authorization

API Abuse - Lessons from the Duolingo Data Scraping Attack

Act Now to Prepare for New NCUA Cyber Incident Reporting Requirements

Wallarm Demo: Orphan and Shadow API Detection

Take Care of Orphan APIs with Wallarm

2023 OWASP Top-10 Series: API4:2023 Unrestricted Resource Consumption

Impact of the New SEC Cyber Incident Reporting Rules on the C-Suite and Beyond

Monthly Archive

Follow Us