API

Fireside Chat with Amway

May 4, 2023 By Salt Security In Salt Security

Every company follows a unique path in adopting such critical and far-reaching security initiatives as API security. Nate Steinberg, Principal Information Security Specialist, shares how Amway approached building out its API security strategy. This on-demand fireside chat with Salt Security and Amway discusses.

View Video

Salt Security

API
Security

Read more about Fireside Chat with Amway

API3:2019 Excessive Data Exposure: Understanding the Risks, Impacts, and How to Prevent It

May 2, 2023 By Indusface In Indusface

Excessive data exposure occurs when APIs reveal more fields, data, and information than the client requires through the API response. Excessive data exposure flaws expose all object properties to API calls rather than what the user needs to act on without considering the object’s sensitivity level. This vulnerability exposes you to data leaks, man-in-the-middle attacks, and other cyber threats. That is why excessive data exposure in APIs is listed as #3 in the OWASP API Security Top 10 2019.

Read Post

Indusface

Read more about API3:2019 Excessive Data Exposure: Understanding the Risks, Impacts, and How to Prevent It

Salt Security Wins Stevie Award for Most Innovative Tech Company of the Year

Apr 27, 2023 By Michelle McLean In Salt Security

What a week we’re having – and it’s only Thursday! RSA has been action-packed, meeting with customers, showing off our new product enhancements, and booking time with new prospects. Interest in API security is running at an all-time high, as more organizations recognize what Salt saw years ago, that APIs entirely upend the security playing field!

Read Post

Salt Security

Read more about Salt Security Wins Stevie Award for Most Innovative Tech Company of the Year

Application Programming Interface (API) testing for PCI DSS compliance

Apr 26, 2023 By Dick Hacking In AT&T Cybersecurity

This is the fourth blog in the series focused on PCI DSS, written by an AT&T Cybersecurity consultant. See the first blog relating to IAM and PCI DSS here. See the second blog on PCI DSS reporting details to ensure when contracting quarterly CDE tests here. The third blog on network and data flow diagrams for PCI DSS compliance is here.

Read Post

AT&T Cybersecurity

Read more about Application Programming Interface (API) testing for PCI DSS compliance

A Big Week at RSA - Hot Company in API Security, API Defenders on the Show Floor

Apr 24, 2023 By Michelle McLean In Salt Security

With warm and sunny weather expected all week, a bunch of the Salt team is thrilled to be at RSA in San Francisco! We’ll get the chance to talk with security leaders about why API security has become a priority project, and we’ll get time to catch up with customers and each other. It’ll be a great week!

Read Post

Salt Security

Read more about A Big Week at RSA - Hot Company in API Security, API Defenders on the Show Floor

An Insider's View: The Updated OWASP API Top 10

Apr 20, 2023 By Salt Security In Salt Security

Stephanie Best, Director of Product Marketing, and Yaniv Balmas, VP of Research at Salt Labs, discuss what you need to know about the new 2023 OWASP API Security Top 10 release candidate. As a member of the OWASP committee that helped shaped the latest report, Yaniv takes you behind the scenes to learn what changed, what stayed the same, and why these decisions were made.

View Video

Salt Security

Read more about An Insider's View: The Updated OWASP API Top 10

A CISOs Guide To The New 2023 OWASP API Security Update

Apr 20, 2023 By Wallarm In Wallarm

The OWASP API Security Project team recently posted the Top-10 API risks Release Candidate (RC) for 2023. Last updated in 2019, this new version is designed to help organizations understand the top threats against APIs and how to secure them. In this webinar, we will dig into the OWASP API Security Top-10 2023RC and discuss: We will share some of our data-driven insights, derived from our quarterly API ThreatStats(tm) Reports, and show how you can protect your APIs in real-time from the most impactful API threats.

View Video

Wallarm

Read more about A CISOs Guide To The New 2023 OWASP API Security Update

A Practitioner's Guide to the New 2023 OWASP API Security Update

Apr 20, 2023 By Wallarm In Wallarm

The OWASP API Security Top-10 risks Release Candidate (RC) is now out for comment. This new version is designed to update your understanding of the top threats against APIs and how to secure them. In this deep-dive webinar, we will dig into each of the OWASP API Security Top-10 2023 RC risks and discuss: The focus of this 2nd webinar in the series will be on what practitioners – builders, breakers, defenders, and DevSecOps – need to know to better protect their APIs.

View Video

Wallarm

Read more about A Practitioner's Guide to the New 2023 OWASP API Security Update

Unified vs API-Based Integrated XDR Platform: What's the difference?

Apr 19, 2023 By Iratxe Vazquez In WatchGuard

The terms unified and integrated are often used interchangeably in the software world. However, security leaders must understand the differences between deeply unified and API-based integrated platforms within an organization and how they can significantly impact everything from cost to efficiency. First, it is essential to define the terms.

Read Post

WatchGuard

Read more about Unified vs API-Based Integrated XDR Platform: What's the difference?

PAN Verification API for the Gaming Industry: What You Need to Know

Apr 19, 2023 By Sumanth Kumar In IDcentral

One of the guiding principles for organisations, whether they are major corporations or small firms, is to ensure compliance. Enforcing compliance helps organisations to adhere to fraud prevention guidelines, identify rule infractions, and shield a corporation from unwarranted penalties and legal action. PAN verification is one such crucial process before onboarding consumers, clients, and third parties in order to remain compliant and within the law.

Read Post