%term

Why is API security the next big thing in Cybersecurity?

Aug 15, 2023 By Farwa Sajjad In AT&T Cybersecurity

APIs, formally known as application programming interfaces, occupy a significant position in modern software development. They revolutionized how web applications work by facilitating applications, containers, and microservices to exchange data and information smoothly. Developers can link APIs with multiple software or other internal systems that help businesses to interact with their clients and make informed decisions.

Read Post

AT&T Cybersecurity

Read more about Why is API security the next big thing in Cybersecurity?

API Security Testing: Importance, Risks and Checklist

Aug 14, 2023 By Indusface In Indusface

Many API-related breaches do not result from sophisticated attackers or diligent security researchers but stem from improper API design and implementation. Recent incidents at Clubhouse, John Deere, and Experian serve as examples, highlighting the consequences of neglecting basic API security practices. To safeguard against security risks, comprehensive API security testing becomes essential, ensuring APIs align with published specifications and are resilient to malicious inputs and attacks.

Read Post

Indusface

Read more about API Security Testing: Importance, Risks and Checklist

What Can be Learned from the JumpCloud Security Incident

Jul 27, 2023 By Nick Rago In Salt Security

In an ideal world, security incidents result in minimal damage, and we can learn from them to improve our future defenses. Fortunately, such appears to be the case with JumpCloud. According to JumpCloud’s blog post, its recent security incident impacted fewer than 5 JumpCloud customers and fewer than 10 devices. Moreover, working together with their incident response (IR) partner Crowdstrike (also a Salt Security partner), JumpCloud has mitigated the attack vector used by the threat actor.

Read Post

Salt Security

Read more about What Can be Learned from the JumpCloud Security Incident

API Discovery: Definition, Importance, and Step-by-Step Guide on AppTrana WAAP

Jul 25, 2023 By Gaurav Chauhan In Indusface

The growing use of APIs in various business areas exposes organizations to new security risks. An analysis of data breaches reveals that US companies could face losses ranging from $12 billion to $23 billion in 2022 due to compromises linked to APIs. Lack of visibility plays a major role in the rise of API breaches. The lack of visibility inherently creates blind spots. How do you overcome the problem of hidden APIs?

Read Post

Indusface

Read more about API Discovery: Definition, Importance, and Step-by-Step Guide on AppTrana WAAP

State of API Security for Financial Services and Insurance

Jul 24, 2023 By Salt Security In Salt Security

As financial services and insurance organizations have increasingly turned to APIs to accelerate business innovation, attackers have also changed their tactics, making APIs their prime target. This short video discusses findings from the first industry-specific version of the State of API Security report and draws on a combination of survey responses and empirical data from the Salt Cloud. Key trends revealed by the survey include.

View Video

Salt Security

Read more about State of API Security for Financial Services and Insurance

Understanding API Attacks: Why Are They Different and How to Prevent API Attacks

Jul 20, 2023 By Stephanie Best In Salt Security

Salt has just released a new resource for business and security leaders – “Understanding API Attacks: Why Are They Different and How Can You Stop Them.” Salt undertook writing this eBook as part of our ongoing commitment to educate the market about API security issues and trends. In this new eBook, we take a close look at how API attacks differ from traditional attacks, and the measures organizations can take to protect against them.

Read Post

Salt Security

Read more about Understanding API Attacks: Why Are They Different and How to Prevent API Attacks

Graylog Acquires Resurface.io's API Security Solution

Jul 19, 2023 By Graylog In Graylog

Strengthens Threat Detection and Incident Response Portfolio to address Growing API Threats.

Read Post

Graylog

Read more about Graylog Acquires Resurface.io's API Security Solution

Graylog API Security Intro Demo

Jul 19, 2023 By Graylog In Graylog

Discover and Improve Your API Security with Graylog! In this quick demo, Rob from Resurface now Graylog, showcases how Graylog helps you understand and manage your API attack surface. From identifying Rogue, prohibited, and deprecated APIs to automatically discovering and summarizing common types of attacks and failures, Graylog streamlines API security. No technical expertise needed – the system categorizes API calls into meaningful buckets, providing detailed views, including full request and response details. Easily create custom signatures, export data, and receive alerts with Graylog's comprehensive API security solution.

View Video

Graylog

API
Security

Read more about Graylog API Security Intro Demo

State of API Security: Financial Services and Insurance

Jul 19, 2023 By Stephanie Best In Salt Security

API security is a pressing concern for industries undergoing digital transformation, and none more so than financial services and insurance.

Read Post

Salt Security

Read more about State of API Security: Financial Services and Insurance

From Resurface to Graylog API Security: The Next Chapter

Jul 18, 2023 By Robert Dickinson In Graylog

When I started Resurface, my core thesis was that web and API security brought unique requirements requiring purpose-built data systems. Using Splunk at scale for API monitoring was/is prohibitively expensive. Using Hadoop or Kafka requires a nerd army to run at any scale. Few data platforms include a mature web or API monitoring model, so this has to be custom-overlaid at significant expense.

Read Post