API

Addressing the Rising Threat of API Leaks

Jan 3, 2024 By Wallarm In Wallarm

In the realm of cybersecurity, the metaphor of "Leaky Buckets" has become an increasingly prevalent concern, particularly in the context of API security. This term encapsulates the hidden vulnerabilities and exposures in API infrastructures that many organizations struggle to identify and address. The digital era has amplified these challenges, with APIs becoming central to the operational fabric of numerous enterprises.

Read Post

Wallarm

Read more about Addressing the Rising Threat of API Leaks

The Darkside of GraphQL

Jan 3, 2024 By Datadog In Datadog

GraphQL is a query language for APIs that provides a powerful and efficient way to query and manipulate data. As powerful and versatile as GraphQL is, its downside is that it can be vulnerable to certain security threats. In this presentation, we will discuss the security vulnerabilities associated with GraphQL, from the basics to more advanced threats, and how to best protect against them. After this presentation, attendees will have a better understanding of security vulnerabilities in GraphQL, as well as an understanding of the steps needed to protect against them.

View Video

Datadog

Read more about The Darkside of GraphQL

How to Become Great at API Key Rotation: Best Practices and Tips

Dec 28, 2023 By Guest Expert In GitGuardian

Secret management can be a complex challenge, especially when you are trying to do it in a way that is right for security. Key rotation is a big piece of that puzzle. In this article, we will take you from zero to hero on key rotation.

Read Post

GitGuardian

Read more about How to Become Great at API Key Rotation: Best Practices and Tips

API Management: Using Runtime API Security to Enhance API Lifecycle Processes

Dec 27, 2023 By Jeff Darrington In Graylog

As I look at the range of API Management approaches that are recommended by various analysts, pundits, and vendors, I find it interesting that most don’t really know how to address “security” in the context of API management. In high-level API lifecycle management diagrams securing APIs is rarely called out visually, although it may be addressed briefly in an accompanying paragraph.

Read Post

Graylog

Read more about API Management: Using Runtime API Security to Enhance API Lifecycle Processes

CISO: Top 10 Trends for 2024

Dec 27, 2023 By Wallarm In Wallarm

I recently hosted and moderated a distinguished panel of Chief Information Security Officers (CISOs) - Nitin Raina, CISO at ThoughtWorks, Mike Wilkes, former CISO at Marvel and Yogesh Badwe, CSO at Druva. We discussed major trends for 2024 across an array of topics including the evolving threat landscape, recent regulations, data privacy considerations, securing product and critical infrastructure.

Read Post

Wallarm

Read more about CISO: Top 10 Trends for 2024

Celebrating 50,000 Downloads of Bearer CLI - and what it means!

Dec 21, 2023 By Guillaume Montard In Bearer

Bearer CLI, our free and open code security (SAST) scanner, has now been downloaded over 50,000 times since its launch back in March — this year! Behind this number are represented some key industry trends: Let’s dig in!

Read Post

Bearer

Read more about Celebrating 50,000 Downloads of Bearer CLI - and what it means!

Noname Security Platform Updates: 3.24 Release

Dec 20, 2023 By Stas Neyman In Noname Security

The Noname Security 3.24 release supports a connection status view for resources discovered through API Gateway and Load Balancer integrations, adds a preview of a new Traffic Audit capability, and enables configuration of the Noname Telemetry service within the Noname platform UI.

Read Post

Noname Security

Read more about Noname Security Platform Updates: 3.24 Release

Noname Security Expands Leadership Team to Drive Company's Next Phase of Growth

Dec 13, 2023 By Noname Security In Noname Security

Appointment of Chief Financial Officer, Chief of Staff, and Vice President of R&D sets the stage for momentous growth and increased innovation in 2024.

Read Post

Noname Security

Read more about Noname Security Expands Leadership Team to Drive Company's Next Phase of Growth

What is Rate Limiting? - Definition, Methods, and Why It Is Important

Dec 12, 2023 By Noname Security In Noname Security

Rate limiting is a mechanism used to control the amount of data or requests that can be transmitted between two systems within a specified time period. It helps prevent abuse, protect system resources, and ensure fair usage for all users. By implementing rate limiting, organizations can mitigate the risk of server overload, improve network performance, and enhance overall security.

View Video

Noname Security

API
Security

Read more about What is Rate Limiting? - Definition, Methods, and Why It Is Important

What is API Abuse? | Noname Academy

Dec 12, 2023 By Noname Security In Noname Security

Modern application programming interfaces (APIs) offer a great example of the law of unintended consequences. With their openness and ability to offer nearly universal connectivity between applications and data sources, they have transformed IT and the businesses that deploy them. However, that same openness also makes APIs ripe targets for abuse.