Wallarm Platform Demo: API Abuse Prevention
Learn how to protect your APIs from malicious automated behavior like API abuse bots, account takeover (ATO), fake accounts, spamming, scalping, vulnerability scanning and content scraping.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
API Security 101: Understanding the Risks and Implementing Best Practices
API security is the process of effectively securing APIs owned by the organization and external APIs used by implementing API-specific security strategies. It secures API vulnerabilities and misconfigurations and prevents their exploitation by attackers. It mitigates a wide range of API security threats and helps effectively manage risks associated with APIs.
Being with the "best of the best" as a YC Top Company
Salt has long benefited from the unique support that comes from being part of the Y Combinator accelerator program (Salt was in the Winter 2016 batch), and all these years later, we’re thrilled to have been named to not one but two of YC’s Top Company lists – the Top Private YC companies 2023 and the YC Breakthrough Companies 2023. For the Top Private list, it’s deja vu all over again, since we made that list last year as well.
Traveling with OAuth - Account Takeover on Booking.com
OAuth (Open Authorization) is a modern, open authorization standard designed to allow cross-application access delegation – for example, allowing your application to read data from your Facebook profile. Combined with the proper extensions, OAuth can also be used for authentication – for example, to log into your application using Google credentials. Since its first introduction in 2006, OAuth has gained tremendous popularity.
OAuth security gaps at Booking.com (now remediated)
This short video explains how Salt Labs researchers identified several critical security flaws on the popular travel site Booking.com. The flaws were found in the site's authentication functionality and could have allowed a malicious attacker to take over user accounts, access profile information, and take actions on behalf of the user such as booking or canceling reservations and ordering transportation services.
API Security for AI Driven SaaS Companies & Security Daily Gym | Kashi (Co-Founder & CTO Fitbots)
In this podcast, Kashi (Co-founder & CTO, Fitbots OKRs) discusses with Venky how AI-based SaaS organizations can secure their APIs with the help of dynamic endpoints. He even shares about his life as a CTO, where he spends a short time on security but still maintains the highest security standards with the help of a Daily Security Gym! With 15+ years of corporate experience, he has followed some consistent security practices over the years and discusses them in detail.
How an Automated Onboarding API Can Streamline Your Business Processes
Definition: Automated onboarding is a process designed and scripted before user onboarding. It is an entire user or customer onboarding process that doesn’t require real-time human interaction and is frequently supported by in-app messages and instructions that are specifically created to ensure a positive onboarding experience and, therefore, customer satisfaction.
Awards and Rewards - the Power of our Strong Partner Program
We are mere weeks into our new fiscal year, but the good news – and the good times – have already started! First – the good news! Today we announced that Salt Security has been recognized by CRN with inclusion in its prestigious Security 100 list for technology innovation in application security! According to Blaine Raddon, CEO of The Channel Company, the Security 100 list acknowledges industry-leading companies that deliver pioneering security offerings to the IT channel.
GraphQL Tutorial in 2 Minutes
What is GraphQL? In this quick 2-minute video, you'll learn the basics of GraphQL and how it compares to REST APIs. GraphQL is a query language that enables developers to retrieve the exact data they need from an API, rather than over-fetching or under-fetching data, while REST API requires multiple requests to retrieve the same data. In this tutorial, you'll learn how to define a schema, create queries, and make requests to a GraphQL API.
WAAP (Web Application & API Protection) security and its importance in 2022
WAAP stands for web application and API protection. As you can notice that this WAAP term is made of two different terms Web Application and API protection. A Web application and API are the most critical components of every device connected to the internet. So Let’s understand both of these terms one by one.