API

2022 Year-End API ThreatStats Report

Aug 1, 2023 By Wallarm

This 2022 recap report looks back at the deteriorating API threat landscape, the most prevalent types of threat vectors, the most vulnerable types of APIs, and much more to provide API security and DevOps teams the data-driven insights needed to improve API security in 2023. One of the main take-aways is that the API threat landscape is becoming ever more dangerous. We make this assessment based on the 2022 data, and specifically these four trends.

Get Report

Wallarm

API
Security

Read more about 2022 Year-End API ThreatStats Report

What Can be Learned from the JumpCloud Security Incident

Jul 27, 2023 By Nick Rago In Salt Security

In an ideal world, security incidents result in minimal damage, and we can learn from them to improve our future defenses. Fortunately, such appears to be the case with JumpCloud. According to JumpCloud’s blog post, its recent security incident impacted fewer than 5 JumpCloud customers and fewer than 10 devices. Moreover, working together with their incident response (IR) partner Crowdstrike (also a Salt Security partner), JumpCloud has mitigated the attack vector used by the threat actor.

Read Post

Salt Security

Read more about What Can be Learned from the JumpCloud Security Incident

Using Bearer to scan your code for Privacy risks

Jul 25, 2023 By Guillaume Montard In Bearer

Did you know that Bearer offers the ability to automatically compile the privacy information Legal teams need from Security and Engineering teams?

Read Post

Bearer

Read more about Using Bearer to scan your code for Privacy risks

API Discovery: Definition, Importance, and Step-by-Step Guide on AppTrana WAAP

Jul 25, 2023 By Gaurav Chauhan In Indusface

The growing use of APIs in various business areas exposes organizations to new security risks. An analysis of data breaches reveals that US companies could face losses ranging from $12 billion to $23 billion in 2022 due to compromises linked to APIs. Lack of visibility plays a major role in the rise of API breaches. The lack of visibility inherently creates blind spots. How do you overcome the problem of hidden APIs?

Read Post

Indusface

Read more about API Discovery: Definition, Importance, and Step-by-Step Guide on AppTrana WAAP

State of API Security for Financial Services and Insurance

Jul 24, 2023 By Salt Security In Salt Security

As financial services and insurance organizations have increasingly turned to APIs to accelerate business innovation, attackers have also changed their tactics, making APIs their prime target. This short video discusses findings from the first industry-specific version of the State of API Security report and draws on a combination of survey responses and empirical data from the Salt Cloud. Key trends revealed by the survey include.

View Video

Salt Security

Read more about State of API Security for Financial Services and Insurance

Understanding API Attacks: Why Are They Different and How to Prevent API Attacks

Jul 20, 2023 By Stephanie Best In Salt Security

Salt has just released a new resource for business and security leaders – “Understanding API Attacks: Why Are They Different and How Can You Stop Them.” Salt undertook writing this eBook as part of our ongoing commitment to educate the market about API security issues and trends. In this new eBook, we take a close look at how API attacks differ from traditional attacks, and the measures organizations can take to protect against them.

Read Post

Salt Security

Read more about Understanding API Attacks: Why Are They Different and How to Prevent API Attacks

Graylog Acquires Resurface.io's API Security Solution

Jul 19, 2023 By Graylog In Graylog

Strengthens Threat Detection and Incident Response Portfolio to address Growing API Threats.

Read Post

Graylog

Read more about Graylog Acquires Resurface.io's API Security Solution

State of API Security: Financial Services and Insurance

Jul 19, 2023 By Stephanie Best In Salt Security

API security is a pressing concern for industries undergoing digital transformation, and none more so than financial services and insurance.

Read Post

Salt Security

Read more about State of API Security: Financial Services and Insurance

Graylog API Security Intro Demo

Jul 19, 2023 By Graylog In Graylog

Discover and Improve Your API Security with Graylog! In this quick demo, Rob from Resurface now Graylog, showcases how Graylog helps you understand and manage your API attack surface. From identifying Rogue, prohibited, and deprecated APIs to automatically discovering and summarizing common types of attacks and failures, Graylog streamlines API security. No technical expertise needed – the system categorizes API calls into meaningful buckets, providing detailed views, including full request and response details. Easily create custom signatures, export data, and receive alerts with Graylog's comprehensive API security solution.

View Video

Graylog

API
Security

Read more about Graylog API Security Intro Demo

From Resurface to Graylog API Security: The Next Chapter

Jul 18, 2023 By Robert Dickinson In Graylog

When I started Resurface, my core thesis was that web and API security brought unique requirements requiring purpose-built data systems. Using Splunk at scale for API monitoring was/is prohibitively expensive. Using Hadoop or Kafka requires a nerd army to run at any scale. Few data platforms include a mature web or API monitoring model, so this has to be custom-overlaid at significant expense.

Read Post