API

STEP Program with Bright Security: DAST Solutions and API Testing

Nov 27, 2023 By Salt Security In Salt Security

We’re all in this together, which is why awareness about APIs and connecting with one another is crucial to cyber security. Salt Security has recently announced our Salt Technical Ecosystem Partner Program which can help demonstrate the role of application security testing when it comes to API security and where it fits in a good API security program.

View Video

Salt Security

Read more about STEP Program with Bright Security: DAST Solutions and API Testing

Panoptica API Security - Introducing AWS API Gateway Support

Nov 27, 2023 By Panoptica In Panoptica

Introducing AWS API Gateway support in Cisco Panoptica for your security your application’s API communications. This video introduces the gateway support and showcases a few key API security risks that Panoptica can identify in your environment. Outshift is Cisco’s incubation engine, innovating what's next and new for Cisco products and sharing our expertise on emerging technologies. Discover the latest on cloud native applications, cloud application security, generative AI, quantum networking and security, future-forward tech research, our latest open source projects and more.

View Video

Panoptica

Read more about Panoptica API Security - Introducing AWS API Gateway Support

Noname Security Announces Technology Integrations with Leading SOAR Platforms

Nov 22, 2023 By Noname Security In Noname Security

Integrations with SOAR platforms empower teams to automate and optimize API security as part of their overall cybersecurity strategy.

Read Post

Noname Security

Read more about Noname Security Announces Technology Integrations with Leading SOAR Platforms

API Security Standards and Protocols: A Primer

Nov 22, 2023 By Phani Deepak Akella In Indusface

Recent API breaches drive home the urgency of robust security. In the T-Mobile data breach, for example, the attackers exploited vulnerabilities in an API to compromise sensitive customer data. This incident exposed millions of users to potential identity theft and underscored the devastating impact of API security lapses. Infiltrating through the API, the attackers gained unauthorized access to customer records, emphasizing the need for comprehensive protection measures.

Read Post

Indusface

Read more about API Security Standards and Protocols: A Primer

Enhancing Developer Experience and Security Reporting on Workflows

Nov 21, 2023 By Guillaume Montard In Bearer

In our previous blog post, we introduced Bearer’s new GitHub App and highlighted its seamless onboarding process and on-demand scanning capabilities. Today, we focus on how this app can significantly enhance the developer experience within Pull Requests (PRs) while providing critical reporting capabilities to security teams.

Read Post

Bearer

Read more about Enhancing Developer Experience and Security Reporting on Workflows

Unpacking the Zimbra Cross-Site Scripting Vulnerability (CVE-2023-37580)

Nov 21, 2023 By Wallarm In Wallarm

On November 16, 2023, a significant security concern was published by Google's Threat Analysis Group (TAG). They revealed an alarming vulnerability in Zimbra Collaboration, a widely-used email hosting tool for organizations. This vulnerability, designated with an identifier, CVE-2023-37580, is a glaring example of a reflected cross-site scripting (XSS) issue. It allows malicious scripts to be injected into unsuspecting users' browsers through a deceptively simple method: clicking on a harmful link.

Read Post

Wallarm

Read more about Unpacking the Zimbra Cross-Site Scripting Vulnerability (CVE-2023-37580)

Secure incoming Amazon API Gateway traffic with Panoptica

Nov 21, 2023 By Meenakshi Kaushik In Panoptica

Panoptica Cisco’s Cloud Application Security platform provides end-to-end lifecycle protection for cloud native application environments. It empowers organizations to safeguard their APIs, serverless functions, containers, and Kubernetes environments.

Read Post

Panoptica

Read more about Secure incoming Amazon API Gateway traffic with Panoptica

2023 API Security Trends for Energy and Utilities

Nov 20, 2023 By Dan Murphy In Noname Security

As environmental consciousness increases across the globe, the pressure on energy and utilities companies continue to intensify. The global community now understands that how we create and access energy affects geopolitical dynamics, food sourcing, climate change and other concerns that will literally dictate the course of human history. To meet these challenges, the energy and utilities sector is now embracing digital transformation.

Read Post

Noname Security

Read more about 2023 API Security Trends for Energy and Utilities

APIs - The Hidden Cause of Data Breaches

Nov 16, 2023 By Shay Levi, CTO In Noname Security

APIs are unseen. They are not typically a technology that end users interact with directly and are somewhat hidden from their day-to-day activities. Therefore, user understanding of API vulnerabilities and the impact an API security incident could have, when it comes to data breaches, is often lacking. While data breaches are big news, what regularly isn't reported is the way in which some of these incidents happen. But the reality is that for many data breaches, the weak links, more often than not, are APIs and improper security around those APIs.

Read Post

Noname Security

Read more about APIs - The Hidden Cause of Data Breaches

Expanding LimaCharlie with API Integrations

Nov 15, 2023 By LimaCharlie In LimaCharlie

We look at how to utilize API integrations within LimaCharlie. Available in our marketplace, API integrations help enrich telemetry or expose complex D&R rules based on returned metadata. From malware lookups to IP address geolocation, API integrations can help you take your detections to the next level.

View Video