%term

API Abuse - Lessons from the Duolingo Data Scraping Attack

Aug 25, 2023 By Wallarm In Wallarm

It’s been reported that 2.6 million user records sourced from the Duolingo app are for sale. The attacker apparently obtained them from an open API provided by the company. There’s a more technical explanation available here. While we talk a lot about the vulnerabilities in the OWASP API Top-10 and the exploits associated with those vulnerabilities, this incident provides a good reminder that not all vulnerabilities are flaws in code. In fact, this API was working as designed.

Read Post

Wallarm

Read more about API Abuse - Lessons from the Duolingo Data Scraping Attack

Act Now to Prepare for New NCUA Cyber Incident Reporting Requirements

Aug 24, 2023 By Wallarm In Wallarm

We recently discussed the new SEC rule requiring all registered companies to report material cyber incidents within four (4) days.

Read Post

Wallarm

Read more about Act Now to Prepare for New NCUA Cyber Incident Reporting Requirements

Take Care of Orphan APIs with Wallarm

Aug 21, 2023 By Wallarm In Wallarm

The Wallarm API Discovery module has been further enhanced to enable customers to identify Orphan APIs and bring them under management. In this post we’ll discuss what Orphan APIs are, why they matter, and how to regain control of your API portfolio.

Read Post

Wallarm

Read more about Take Care of Orphan APIs with Wallarm

Wallarm Demo: Orphan and Shadow API Detection

Aug 21, 2023 By Wallarm In Wallarm

Orphan APIs can lead to a host of unnecessary issues such as misallocated resources, maintenance issues, wasted development and testing time, and issues with maintainability, scalability, security and usability. Watch this quick demo to learn how Wallarm API Discovery helps you identify and manage any Orphan APIs in your portfolio.

View Video

Wallarm

API
Security

Read more about Wallarm Demo: Orphan and Shadow API Detection

2023 OWASP Top-10 Series: API4:2023 Unrestricted Resource Consumption

Aug 19, 2023 By Wallarm In Wallarm

Welcome to the 5th post in our weekly series on the new 2023 OWASP API Security Top-10 list, with a particular focus on security practitioners. This post will focus on API4:2023 Unrestricted Resource Consumption. In this series we are taking an in-depth look at each category – the details, the impact and what you can do about it.

Read Post

Wallarm

Read more about 2023 OWASP Top-10 Series: API4:2023 Unrestricted Resource Consumption

Impact of the New SEC Cyber Incident Reporting Rules on the C-Suite and Beyond

Aug 18, 2023 By Wallarm In Wallarm

We recently hosted a compact and very engaging panel discussion about the new SEC Cyber Incident Reporting Rules due to come into effect later this year. We were fortunate to be joined by two well-known experts: In the post, we will *not* rehash what was said in the panel discussion. If you did not get to attend the live session, we invite you watch it on-demand – it’s 30 minutes well spent!

Read Post

Wallarm

Read more about Impact of the New SEC Cyber Incident Reporting Rules on the C-Suite and Beyond

API Abuse Prevention Demo May 2023

Jun 22, 2023 By Wallarm In Wallarm

API Abuse can be harder to prevent than web application attacks. This quick demo of the Wallarm API Abuse Prevention solution shows how our unique, integrated approach to addressing malicious automated behavior puts you back in control.

View Video

Wallarm

API
Security

Read more about API Abuse Prevention Demo May 2023

Wallarm Webinar: Securing Apps and APIs in 2023 - Demo for CISOs and Practitioners

Jun 22, 2023 By Wallarm In Wallarm

In today's rapidly evolving digital landscape, securing APIs against emerging threats is crucial. Wallarm offers essential solutions for safeguarding both new and legacy APIs and web applications. Tim Ebbers, Field CTO, and Stepan Ilyin, Co-Founder, present this insightful product democast of the Wallarm platform, highlighting key components and recent enhancements.

View Video

Wallarm

Read more about Wallarm Webinar: Securing Apps and APIs in 2023 - Demo for CISOs and Practitioners

Wallarm Demo: Shadow API Detection

May 24, 2023 By Wallarm In Wallarm

Learn how you can identify undocumented and unmanaged APIs in the Wallarm console with our new and improved Shadow API Detection capability.

View Video

Wallarm

API
Security

Read more about Wallarm Demo: Shadow API Detection

A Practitioner's Guide to the New 2023 OWASP API Security Update

Apr 20, 2023 By Wallarm In Wallarm

The OWASP API Security Top-10 risks Release Candidate (RC) is now out for comment. This new version is designed to update your understanding of the top threats against APIs and how to secure them. In this deep-dive webinar, we will dig into each of the OWASP API Security Top-10 2023 RC risks and discuss: The focus of this 2nd webinar in the series will be on what practitioners – builders, breakers, defenders, and DevSecOps – need to know to better protect their APIs.

View Video

Wallarm

Read more about A Practitioner's Guide to the New 2023 OWASP API Security Update

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

API Abuse - Lessons from the Duolingo Data Scraping Attack

Act Now to Prepare for New NCUA Cyber Incident Reporting Requirements

Take Care of Orphan APIs with Wallarm

Wallarm Demo: Orphan and Shadow API Detection

2023 OWASP Top-10 Series: API4:2023 Unrestricted Resource Consumption

Impact of the New SEC Cyber Incident Reporting Rules on the C-Suite and Beyond

API Abuse Prevention Demo May 2023

Wallarm Webinar: Securing Apps and APIs in 2023 - Demo for CISOs and Practitioners

Wallarm Demo: Shadow API Detection

A Practitioner's Guide to the New 2023 OWASP API Security Update

Monthly Archive

Follow Us