Snyk Acquires Developer-First DAST Provider Probely
Company Now Covers API Security Testing Crucial for Modern AI Development.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Context is King: Using API Sessions for Security Context
There’s no doubt that API security is a hot topic these days. The continued growth in API-related breaches and increase in publicized API vulnerabilities has pushed API security to the top of CISO’s lists. The tools in the market for API security still have room for improvement, of course. One of the challenges security practitioners face with APIs is understanding the context in which an attack took place.
The Hidden Costs of API Breaches: Quantifying the Long-Term Business Impact
API attacks can be costly. Really costly. Obvious financial impacts like legal fines, stolen finances, and incident response budgets can run into the hundreds of millions. However, other hidden costs often compound the issue, especially if you’re not expecting them. This article will explore the obvious and hidden costs of API breaches, their long-term business impacts, and how you can communicate the importance of API security to business stakeholders and decision-makers.
How Weak Access Controls Led to the Optus API Breach #accesscontrol #databreach #dataleaks
Broken access controls are one of the leading causes of API breaches. Learn how weak access control can leave your data exposed, as we explore real-world examples and share insights on protecting sensitive information. Strengthen your API access controls to safeguard against unauthorized access and potential breaches!
AI-Powered APIs: Expanding Capabilities and Attack Surfaces
AI and APIs have a symbiotic relationship. APIs power AI by providing the necessary data and functionality, while AI enhances API security through advanced threat detection and automated responses. In 2023, 83% of Internet traffic traveled through APIs, but there was a 21% increase in API-related vulnerabilities in Q3 2024, severely impacting AI. The relationship between AI and APIs expands capabilities while simultaneously increasing potential vulnerabilities.
Key Indicators of a Strong API Security Program - Do You Have Them? #securitymeasures #securitykey
What does a successful API security program look like? Discover the essential indicators that every organization should monitor, from inventory control to continuous monitoring and anomaly detection. Learn how these key metrics can safeguard your APIs and ensure your defenses are ready for emerging threats!
Gaining Security Context with API Session Data
API attacks don't always occur in a single request, and more sophisticated attacks require additional context. Whether it's account takeover or scraping, understanding the behavior of an attacker across a session is key to accurate detection and effective investigation. Today, organizations often lack the ability to delve into the details of specific API sessions. Data is spread across multiple tools, or simply unavailable. The Wallarm platform allows users to seamlessly navigate between attack detections and the surrounding session data to fully understand the behavior and interactions involved.
API Security: The Non-Negotiable for Modern Transportation
The transportation sector is undergoing a digital revolution, from railways to aviation and trucking. APIs are at the heart of this transformation, particularly for airlines. Airlines utilize APIs to integrate internal systems with vital services such as booking platforms, check-in services, real-time flight updates, communication with customs agencies, and baggage handling.
Attackers Abuse DocuSign API to Send Authentic-Looking Invoices At Scale
In a concerning trend, cybercriminals are leveraging DocuSign's APIs to send fake invoices that appear strikingly authentic. Unlike traditional phishing scams that rely on deceptively crafted emails and malicious links, these incidents use genuine DocuSign accounts and templates to impersonate reputable companies, catching users and security tools off guard.
Securing APIs in Retail: Safeguarding Customer Data
The retail industry’s digital transformation has made secure APIs essential to modern operations since they are at the core of this shift. APIs power everything from e-commerce platforms and mobile shopping apps to inventory management, point-of-sale systems, and personalized customer experiences. They help retailers stay agile in a fast-paced market by enabling seamless data exchange and streamlining processes.