Tag: api
-
49 Million Customers Impacted by API Security Flaw
How safe is your data? With the increasing reliance on online services, this question weighs heavily on everyone’s mind. The recent cyber incident ser… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/49-million-customers-impacted-by-api-security-flaw/
-
Shifting the Security Mindset: From Network to Application Defense
Web application development and usage are at an all-time high, but businesses aren’t sure which APIs to monitor or how to protect them. The post icati… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/shifting-the-security-mindset-from-network-to-application-defense/
-
An Open Letter to API Vendors: Embrace Secure Authentication Methods, Abandon API Keys
3 min read… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/an-open-letter-to-api-vendors-embrace-secure-authentication-methods-abandon-api-keys/
-
Dell Data Breach: Personal Information of 49 Million Customers Compromised due to latest API Abuse
Dell recently issued a notice regarding a data breach that occurred on May 9, which has reportedly affected over 49 million customers across the globe… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/dell-data-breach-personal-information-of-49-million-customers-compromised-due-to-latest-api-abuse/
-
Akamai confirms acquisition of Noname for $450M
Akamai will integrate Noname into its API Security business, and expects the acquisition deliver approximately $20 million of revenue in its fiscal ye… First seen on techcrunch.com Jump to article: techcrunch.com/2024/05/07/akamai-confirms-acquisition-of-noname-for-450m/
-
Hackers Increasingly Abusing Microsoft Graph API for Stealthy Malware Communications
Threat actors have been increasingly weaponizing Microsoft Graph API for malicious purposes with the aim of evading detection.This is done to facilita… First seen on thehackernews.com Jump to article: thehackernews.com/2024/05/hackers-increasingly-abusing-microsoft.html
-
Reverse Engineering Electron Apps to Discover APIs
Learn how to reverse engineer an Electron app to find artifacts like source code and API endpoints, and capture live traffic with Burp Suite. The post… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/reverse-engineering-electron-apps-to-discover-apis/
-
Salt Security Unveils First AI-Infused API Security Platform to Address Proliferation of GenAI Application Development
This week, Salt Security, a frontrunner in API security, have unveiled its groundbreaking API Security Protection Platform. This platform, powered by … First seen on itsecurityguru.org Jump to article: www.itsecurityguru.org/2024/05/08/salt-security-unveils-first-ai-infused-api-security-platform-to-address-proliferation-of-genai-application-development
-
RSAC 2024 Highlights, Connecting on API Security and Bot Management
Tags: apiAnother RSAC has wrapped! Thank you to everyone who stopped by our booth to learn how the Cequence Unified API Protection platform’s integrated API se… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/rsac-2024-highlights-connecting-on-api-security-and-bot-management/
-
Dell-Leak: Daten wochenlang über Dell-API abgezogen
Beim Computerhersteller Dell gab es ein Datenleck, bei dem ein Angreifer Daten von gut 49 Millionen Dell-Kunden abziehen konnte. Das sind wohl Daten a… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/05/11/dell-leak-daten-wochenlang-ber-dell-api-abgezogen/
-
Dell reagierte nicht auf Warnung vor Diebstahl von Kundendaten
Während ein Angreifer über eine API von Dell Kundendaten abgriff, schickte er Mails an das Unternehmen. Das reagierte erst, als die Daten veröffentlic… First seen on heise.de Jump to article: www.heise.de/news/Dell-reagierte-nicht-auf-Warnung-vor-Diebstahl-von-Kundendaten-9714977.html
-
Dell API abused to steal 49 million customer records in data breach
The threat actor behind the recent Dell data breach revealed they scraped information of 49 million customer records using an partner portal API they … First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/dell-api-abused-to-steal-49-million-customer-records-in-data-breach/
-
CISO Corner: Verizon DBIR Lessons; Workplace Microaggression; Shadow APIs
Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps. Also include… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/ciso-corner-
-
How to build a Copilot for Security API Plugin Part 1
Tags: apiFirst seen on thesecurityblogger.com Jump to article: www.thesecurityblogger.com/how-to-build-a-copilot-for-security-api-plugin-part-1/
-
Shadow APIs: An Overlooked Cyber-Risk for Orgs
First seen on darkreading.com Jump to article: www.darkreading.com/application-security/shadow-apis-an-overlooked-cyber-risk-for-orgs
-
Best API Security Product: Wallarm wins 2024 Cybersecurity Excellence Award
We are thrilled to announce that Wallarm has clinched the sought-after 2024 Cybersecurity Excellence Award, under the category Best API Security Produ… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/best-api-security-product-wallarm-wins-2024-cybersecurity-excellence-award/
-
Akamai to Acquire API Protection Startup Noname Security for $450 Million
Akamai has announced plans to acquire Noname Security to enhance its API protection offering. The post as announced plans to acquire Noname Security t… First seen on securityweek.com Jump to article: www.securityweek.com/akamai-to-acquire-api-protection-startup-noname-security-for-450-million/
-
Enabling GenAI with AI-infused API Security
GenAI has the promise to transform companies, and introduce a lot of security risk. One of the main benefits of GenAI relates to the modernization of … First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/enabling-genai-with-ai-infused-api-security/
-
API Vulnerabilities Found Across AI Infrastructure Projects at NVIDIA, Mercedes
AI is rapidly increasing the pace of API creation within organizations, leading to API security becoming as significant as traditional application sec… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/api-vulnerabilities-found-across-ai-infrastructure-projects-at-nvidia-mercedes/
-
APIContext’s Global Cloud API Performance Report Show A Decline In Cloud API Availability
APIContext has unveiled its 2024 Cloud Service Provider API Report, offering an in-depth examination of the performance of leading cloud service provi… First seen on itsecurityguru.org Jump to article: www.itsecurityguru.org/2024/04/26/apicontexts-global-cloud-api-performance-report-show-a-decline-in-cloud-api-availability
-
Salt Security Enhances API Security Platform with OAuth Protection Package
Salt Security have announced the release of its new multi-layered OAuth protection package to detect attempts to exploit OAuth and proactively fix vul… First seen on itsecurityguru.org Jump to article: www.itsecurityguru.org/2024/04/25/salt-security-enhances-api-security-platform-with-oauth-protection-package/
-
Attackers evade detection by leveraging Microsoft Graph API
First seen on scmagazine.com Jump to article: www.scmagazine.com/news/attackers-evade-detection-by-leveraging-microsoft-graph-api
-
Hackers Exploit Microsoft Graph API For CC Communications
An emerging threat leverages Microsoft’s Graph API to facilitate command-and-control (C&C) communications through Microsoft cloud services. Recent… First seen on gbhackers.com Jump to article: gbhackers.com/hackers-exploit-microsoft-graph-api/
-
Dropbox says attackers accessed customer and MFA info, API keys
File hosting service Dropbox has confirmed that attackers have breached the Dropbox Sign production environment and accessed customer personal and aut… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/05/02/dropbox-sign-breached/
-
Attackers steal API keys, OAuth tokens, in Dropbox Sign breach
First seen on scmagazine.com Jump to article: www.scmagazine.com/news/attackers-steal-api-keys-oauth-tokens-in-dropbox-sign-breach
-
Dropbox Sees Breach of Legally Binding E-Signature Service
All Dropbox Sign Users’ Emails Stolen, Plus Some MFA and OAuth Tokens, API Keys. Dropbox said hackers breached its infrastructure and stole swaths of … First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/dropbox-sees-breach-legally-binding-e-signature-service-a-24997
-
Traceable AI Raises $30 Million to Safeguard Cloud APIs
Traceable AI has raised $110 million since launching in 2018 with ambitious plans in the competitive API security and observability space. The post … First seen on securityweek.com Jump to article: www.securityweek.com/traceable-ai-raises-30-million-to-safeguard-cloud-apis/
-
Finding Attack Vectors using API Linting
Learn how to weaponize developer tools used for API linting to find attack vectors in the APIs you are hacking. The post w to weaponize developer too… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/04/finding-attack-vectors-using-api-linting/
-
Is API Security Just a Better WAF? | Impart Security
The perceptions of the API security market have really shifted since we started Impart Security three years ago. When we first started Impart, API sec… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/04/is-api-security-just-a-better-waf-impart-security/