Too Many APIs, Too Little Control #APIsprawl #Visibility #DevOps
By 2025, over half of enterprise APIs may go unmanaged. The faster we build, the harder it is to see what’s running.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Understanding the NCSC's New API Security Guidance
Legislative, regulatory, and advisory bodies the world over are waking up to the importance of API security. Most recently, the UK’s National Cyber Security Centre (NCSC) has published detailed guidance on best practices for building and maintaining secure APIs. In this blog, we’ll break down that guidance and explore how Wallarm’s platform can help you align with each one.
How AI Supercharges the API Threat Landscape AIsecurity #APIs #APIexplosion
AI is revolutionizing how we build software—but it’s also driving rapid, unsecured API growth. Learn how AI agents connect systems fast...
Inside the AI Threat Landscape: From Jailbreaks to Prompt Injections and Agentic AI Risks
AI has officially moved out of the novelty phase. What began with people messing around with LLM-powered GenAI tools for content creation has rapidly evolved into a complex web of agentic AI systems that form a critical part of the modern corporate landscape. However, this transformation has given new life to old threats, transforming the API security landscape all over again.
API Iceberg: The Hidden Risk Lurking Below the Surface #APIsecurity #InternalAPIs #HiddenRisk
Most security teams focus on public APIs—but what about the internal ones you can’t see? As architectures evolve, hidden APIs become silent threats.
What CISA's BOD 25-01 Means for API Security and How Wallarm Can Help
The US government has taken another significant step towards strengthening cloud security with the release of CISA’s Binding Operational Directive (BOD) 25-01. Aimed at improving the security posture of federal cloud environments, BOD 25-01 mandates robust configuration, visibility, and control across cloud-based services. While the directive doesn’t explicitly name API security, securing modern cloud systems relies on securing APIs - including the ones security teams don’t know about.
Beyond Traditional Threats: The Rise of AI-Driven API Vulnerabilities
AI has had dramatic impacts on almost every facet of every industry. API security is no exception. Up until recently, defending APIs meant guarding against well-understood threats. But as AI proliferates, automated adversaries, AI-crafted exploits, and business logic abuse have complicated matters. It’s no longer enough to merely patch known flaws; security teams must now contend with intelligent, adaptive attacks that evolve as fast as the technology they target.
Smarter API Security Demo: See How Wallarm Protects Modern APIs and Agentic AI
Modern APIs are under constant attack—from botnets to logic abuse to threats targeting Agentic AI. Most security tools lag behind. Wallarm doesn’t. Join us for a live walkthrough of Wallarm’s advanced API security platform. In this session you will see how to instantly discover vulnerable endpoints, protect business-critical flows, and stop API abuse—without slowing down your teams. What you'll learn.
API Security Is a Business Problem-Not Just an IT One
APIs are more than technical components—they're business-critical assets. In this powerful moment, Jeremy Dodson lays out why frameworks aren't enough and why companies must treat API security as a core business priority. Security leaders: it’s time to shift your mindset and protect real data flows, not just check boxes.
CDNs Won't Save Your APIs: Here's Why You Need to Rethink Security
Content delivery networks (CDNs) are great for performance—but terrible for protecting APIs. Attackers can poison the cache or route around security altogether when APIs are misconfigured. In this clip, Jeremy Dodson explains why relying on CDNs can expose critical business data.