API

The Other Crowdstrike Outage

Aug 19, 2024 By Wallarm In Wallarm

On July 19, 2024, a flawed update in CrowdStrike Falcon's channel file 291 led to a logic error that caused Windows systems to crash, resulting in widespread BSOD (Blue Screen of Death) incidents. The impact was severe, disrupting critical infrastructure globally, from grounded flights to halted public transit systems. In fact, you’d have to have been living under a rock to have missed this incident.

Read Post

Wallarm

Read more about The Other Crowdstrike Outage

API Leaks: Identifying and Preventing Data Exposure

Aug 19, 2024 By Wallarm In Wallarm

In this video, we explore the growing concern of API leaks and how they can lead to significant data exposure. Learn about the key strategies for identifying and preventing API leaks to protect your organization’s sensitive information. Our experts provide actionable insights on mitigating risks associated with API vulnerabilities.

View Video

Wallarm

Read more about API Leaks: Identifying and Preventing Data Exposure

Unveiling Top API Vulnerabilities and Emerging Trends: Introducing the Wallarm Q2 2024 API ThreatStats Report

Aug 16, 2024 By Wallarm In Wallarm

As we move through 2024, the Wallarm Research Team continues to monitor the evolving API vulnerability and threat landscape. Our latest Q2 ThreatStats Report reveals critical trends and developments that are reshaping the security environment. Continuing from our Q1 findings, the surge in AI API vulnerabilities is not only persisting but intensifying, with an alarming increase in both the volume and severity of exploits.

Read Post

Wallarm

Read more about Unveiling Top API Vulnerabilities and Emerging Trends: Introducing the Wallarm Q2 2024 API ThreatStats Report

State of API Security Webinar - Wallarm + @gigaom

Aug 15, 2024 By Wallarm In Wallarm

The session will explore the API Security landscape, how to evaluate solutions, the Wallarm platform and why Wallarm was named a Leader and Outperformer in API Security.

View Video

Wallarm

API
Security

Read more about State of API Security Webinar - Wallarm + @gigaom

API Attacks: Understanding Malicious and Malformed Threats

Aug 15, 2024 By Wallarm In Wallarm

This video dives into two critical categories of API attacks: malicious intentions and malformed API threats. Learn why these dangers are becoming increasingly significant for modern companies and how API security can help prevent major incidents. Experts from GigaOm and Wallarm discuss how to identify and mitigate these vulnerabilities to ensure the safety of your data.

View Video

Wallarm

Read more about API Attacks: Understanding Malicious and Malformed Threats

TracFone Breach Underscores Critical Need for Mobile Carrier API Security

Aug 15, 2024 By Adam Fisher In Salt Security

The recent Federal Communications Commission (FCC) settlement with TracFone Wireless, Inc. (TracFone) for $16 million highlights a critical vulnerability within the mobile telecommunications industry: API security. The investigation revealed unauthorized access to customer data through weaknesses in TracFone's mobile carrier APIs. This incident reminds mobile carriers to prioritize robust API security measures to safeguard customer data and ensure network integrity.

Read Post

Salt Security

Read more about TracFone Breach Underscores Critical Need for Mobile Carrier API Security

Time is of the Essence: Shrinking MTTR in API Security

Aug 14, 2024 By Eric Schwake In Salt Security

In the fast-paced world of cybersecurity, every second counts. When an API attack occurs, the speed at which your security team can detect, understand, and respond to the threat can mean the difference between a minor incident and a major data breach. This is where Mean Time to Resolve (MTTR) comes into play. MTTR is a key performance indicator (KPI) that measures the average time it takes to resolve a security incident, from the moment it's detected to the point where it's fully mitigated.

Read Post

Salt Security

Read more about Time is of the Essence: Shrinking MTTR in API Security

How Attackers Use APIs to Disguise Bots as Games Consoles

Aug 13, 2024 By Alex McConnell In Netacea

Attackers and bot authors are continually evolving their methods, shifting their focus beyond just websites. With websites often having a reasonable level of protection, malicious actors are increasingly targeting less-protected areas, namely APIs, with their bots. This blog post delves into the evolving threat landscape. We’ll focus on how attackers exploit APIs and IoT devices to launch attacks like credential stuffing, using streaming services as a prime example.

Read Post

Netacea

Read more about How Attackers Use APIs to Disguise Bots as Games Consoles

Gartner Insights: Navigating the Evolving API Protection Market and Taking Action

Aug 13, 2024 By Eric Schwake In Salt Security

Securing your API ecosystem is increasingly complex, leaving organizations unsure where to begin. Gartner's 2024 Market Guide for API Protection offers clear guidance: Understanding your API attack surface and prioritizing your security efforts is crucial. Once you have visibility into your API landscape, you can implement appropriate security measures to protect your APIs from abuse and access violations.

Read Post

Salt Security

Read more about Gartner Insights: Navigating the Evolving API Protection Market and Taking Action

API Security Testing on Free Swagger collection

Aug 13, 2024 By VISTA InfoSec In VISTA InfoSec

API security is a critical aspect of modern web applications, ensuring that your APIs are robust and secure from potential threats. In our latest video, we dive into API security testing using a free Swagger collection. Swagger, an open-source framework, allows developers to design, build, document, and test their APIs with ease. By leveraging Swagger collections, you can perform comprehensive security testing to identify vulnerabilities such as injection flaws, data exposure, and improper authentication. This proactive approach helps in mitigating risks and protecting your API endpoints from malicious attacks.

View Video