Tag: api
-
Hacking APIs with HTTPie
First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/hacking-apis-with-httpie/
-
Quarter of Firms Suffer an API-Related Breach
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/quarter-firms-suffer-api-related/
-
Hackers Attacking Vaults, Buckets, And Secrets To Steal Data
Hackers target vaults, buckets, and secrets to access some of the most classified and valuable information, including API keys, logins, and other usef… First seen on gbhackers.com Jump to article: gbhackers.com/hackers-attacking-vaults-buckets-secrets/
-
How bots abuse APIs and tips to protect against it
Tags: apiFirst seen on scmagazine.com Jump to article: www.scmagazine.com/native/how-bots-abuse-apis-and-tips-to-protect-against-it
-
Simplifying Azure Key Vault Updates With AppViewX Automation
Azure Key Vault service offers a secure storage solution for cryptographic keys, API keys, passwords, and certificates in the cloud. However, managing… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/simplifying-azure-key-vault-updates-with-appviewx-automation/
-
Novel malware campaign sets sights on misconfigured Docker APIs
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/novel-malware-campaign-sets-sights-on-misconfigured-docker-apis
-
Lack of visibility into APIs leaves blind spots, says new study
Tags: apiFirst seen on scmagazine.com Jump to article: www.scmagazine.com/news/lack-of-visibility-into-apis-leaves-blind-spots-says-new-study
-
PCI DSS 4.0.1: New Clarifications on Client-Side Security What You Need to Know
As a leading provider of web application and API security solutions, Imperva is committed to helping merchants, payment processors, and anyone seeking… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/pci-dss-4-0-1-new-clarifications-on-client-side-security-what-you-need-to-know/
-
Cryptojacking campaign targets exposed Docker APIs
A malware campaign targets publicly exposed Docker API endpoints to deliver cryptocurrency miners and other payloads. Researchers at Datadog uncovered… First seen on securityaffairs.com Jump to article: securityaffairs.com/164668/cyber-crime/malware-campaign-docker-api-endpoints.html
-
Understanding the Dell Data Breach | Impart Security
Recently, Dell faced a significant data breach, where a threat actor exploited API vulnerabilities to steal 49 m… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/understanding-the-dell-data-breach-impart-security/
-
Hackers Employing New Techniques To Attack Docker API
Attackers behind Spinning YARN launched a new cryptojacking campaign targeting publicly exposed Docker Engine hosts by using new binaries chkstart (re… First seen on gbhackers.com Jump to article: gbhackers.com/new-hacking-techniques-docker-api/
-
42% plan to use API security for AI data protection
While 75% of enterprises are implementing AI, 72% report significant data quality issues and an inability to scale data practices, according to F5. Da… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/06/18/ai-widespread-implementation-challenge/
-
APIs: The Silent Heroes of Data Center Management
In the intricate ecosystem of data center operations, managing and optimizing infrastructure is a complex, continuous task. Data Center Infrastructure… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/apis-the-silent-heroes-of-data-center-management/
-
7 Deadly Sins of API Security Testing
Tags: apiExplore the misconceptions and anti-patterns of applying security testing to APIs, and how to address them. The post the misconceptions and anti-patte… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/7-deadly-sins-of-api-security-testing/
-
Case Study: How Sungage Financial improved their application security within 1 week
Sungage Financial chose Escape’s API security solution to secure their new GraphQL APIs. Escape’s easy setup, actionable remediation, and GraphQL supp… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/case-study-how-sungage-financial-improved-their-application-security-within-1-week/
-
Solaris SE partners with Salt Security
Salt Security, the leading API security company, today announced that Solaris SE, Europe’s leading embedded finance platform, has deployed Salt Securi… First seen on itsecurityguru.org Jump to article: www.itsecurityguru.org/2024/05/30/solaris-se-partners-with-salt-security/
-
Three ways to deliver API security
Tags: apiFirst seen on scmagazine.com Jump to article: www.scmagazine.com/perspective/three-ways-to-deliver-api-security
-
Security challenges mount as companies handle thousands of APIs
Tags: apiModern applications are taking over enterprise portfolios, with apps classed as modern now making up 51% of the total, up by more than a quarter in th… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/06/04/companies-api-management-security/
-
Cox Communications Patches Newly Discovered Critical API Bug
Security Researcher Says Flaw Came From 700 Exposed APIs Belonging to Cox. An independent security researcher discovered a critical flaw in the backen… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/cox-communications-patches-newly-discovered-critical-api-bug-a-25409
-
Cox fixed an API auth bypass exposing millions of modems to attacks
‹Cox Communications has fixed an authorization bypass vulnerability that enabled remote attackers to abuse exposed backend APIs to reset millions of m… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cox-fixed-an-api-auth-bypass-exposing-millions-of-modems-to-attacks/
-
Why HAST is important to API hackers
Learn why Human Application Security Testing (HAST) is important to API hackers. The post y Human Application Security Testing (HAST) is important to … First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/why-hast-is-important-to-api-hackers/
-
Dropbox discloses data breach involving Dropbox Sign
A threat actor accessed Dropbox Sign customer names, emails and hashed passwords as well as API keys, OAuth tokens. multifactor authentication informa… First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366583233/Dropbox-discloses-data-breach-involving-Dropbox-Sign
-
Security challenges mount as as companies handle thousands of APIs
Tags: apiModern applications are taking over enterprise portfolios, with apps classed as modern now making up 51% of the total, up by more than a quarter in th… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/06/04/companies-api-management-security/
-
Impart Security: Leading the Charge in API Security with SOC 2 Type 2 Certification | Impart Security
We’re incredibly proud to share some exciting news at Impart Security: We’ve achieved SOC 2 Type 2 certification! This certification represents our un… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/impart-security-leading-the-charge-in-api-security-with-soc-2-type-2-certification-impart-security/
-
Ungeschützte API: Sicherheitslücke macht Studenten zu Wäsche-Millionären
In vielen Hochschulen und Wohnheimen stehen Wäscheautomaten von CSC Serviceworks. Zwei Studenten haben darin eine Sicherheitslücke entdeckt – mit erhe… First seen on golem.de Jump to article: www.golem.de/news/ungeschuetzte-api-sicherheitsluecke-macht-studenten-zu-waesche-millionaeren-2405-185242.html
-
Writing Burp extensions in Kotlin
Tags: apiLearn how to write Burp Suite extensions using the new Montoya API with Kotlin and Visual Studio Code (VS Code) The post w to write Burp Suite extensi… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/writing-burp-extensions-in-kotlin/
-
10 Ways a Digital Shield Protects Apps and APIs
Tags: apiFirst seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/10-ways-a-digital-shield-protects-apps-and-apis-in-a-distributed-cloud-world
-
Apple API Allows Wi-Fi AP Location Tracking
Privacy FAIL: Apple location service returns far more data than it should, to people who have no business knowing it, without your permission. The pos… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/apple-wi-fi-location-privacy-richixbw/
-
API missbraucht: Hacker teilt Details zum Cyberangriff auf Dell
Ein Cyberkrimineller hat rund 49 Millionen Kundendatensätze von Dell abgegriffen. Möglich gewesen ist ihm dies über eine unzureichend geschützte API e… First seen on golem.de Jump to article: www.golem.de/news/api-missbraucht-hacker-teilt-details-zum-cyberangriff-auf-dell-2405-185010.html
-
Sensitive Data Detection using AI for API Hackers
Learn how to use artificial intelligence (AI) to discover sensitive data in the APIs you are hacking with the help of Microsoft Presidio. The post w t… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/sensitive-data-detection-using-ai-for-api-hackers/