The Last Watchdog

FEBRUARY 28, 2022

One could make the argument that Application Programming Interfaces — APIs – are a vital cornerstone of digital transformation. APIs interconnect the underlying components of modern digital services in a very flexible, open way. API complexity. API security is more complex than traditional web security.

Security 255

Security IoT Digital transformation Authentication 255

The Last Watchdog

MARCH 8, 2023

APIs (Application Programming Interfaces) play a critical role in digital transformation by enabling communication and data exchange between different systems and applications. API security is essential for maintaining the trust of customers, partners, and stakeholders and ensuring the smooth functioning of digital systems.

Digital transformation 158

Digital transformation Security Data breaches Customer Experience 158

The Last Watchdog

JANUARY 4, 2022

APIs are putting business networks at an acute, unprecedented level of risk – a dynamic that has yet to be fully acknowledged by businesses. Related: ‘SASE’ framework extends security to the network edge. This is so because a confluence of developments in 2021 has put API security in the spotlight, where it needs to be.

Security 242

Security Digital transformation Cloud Cybersecurity 242

Thales Cloud Protection & Licensing

MARCH 6, 2024

API Security in 2024: Imperva Report Uncovers Rising Threats and the Urgent Need for Action madhav Thu, 03/07/2024 - 04:56 APIs (Application Programming Interfaces) are the backbone of modern digital innovation. Yet, amidst this accelerated adoption of APIs comes a significant change in the threat landscape.

Security 87

Security Authentication Risk Cybersecurity 87

The Last Watchdog

NOVEMBER 30, 2021

APIs are the snippets of code that interconnect the underlying components of all the digital services we can’t seem to live without. Indeed, APIs have opened new horizons of cloud services, mobile computing and IoT infrastructure, with much more to come. API vulnerabilities are ubiquitous and multiplying; they’re turning up everywhere.

IT 226

IT Security Big data Digital transformation 226

Security Affairs

JUNE 14, 2022

Organizations face the constant need to protect these APIs from attacks so they can protect organizational data. Organizations are rapidly opening their ecosystem through Application Programming Interfaces (API) by ensuring seamless access to data and interaction with external software components and services. Prioritize Security.

Security 90

Security Authentication Encryption Access 90

The Security Ledger

JULY 12, 2023

New threats demand that we transform the way we think about securing the endpoints. Case in point: APIs, writes Ross Moore. The post Attacks on APIs demand a Security Re-Think appeared first on The Security Ledger with Paul F.

Security 98

Security Compliance Cybersecurity 98

Data Breach Today

JANUARY 12, 2024

Also: Why We Should Care About the New York Times' Copyright Lawsuit Against OpenAI In the latest weekly update, ISMG editors discussed how the surge in API usage poses challenges for organizations, why good governance is so crucial to solving API issues and how The New York Times' legal action against OpenAI and Microsoft highlights copyright concerns. (..)

Security 293

Security Government 293

IBM Big Data Hub

JUNE 9, 2023

Among the most prominent new examples is attacks that exploit the growth of application programming interfaces (APIs) , which work to connect applications and systems to facilitate the exchange of data. ” API management and API gateways can play an important role in how you consistently create, secure and control access to your APIs.

Security 85

Security Artificial Intelligence Digital transformation Access 85

The Security Ledger

MARCH 6, 2023

Removing the ability to automate against a vulnerable API is a huge step forward, as automation is a key enabler for both the exploitation and the extraction of large amounts of sensitive data. The post Malicious Automation is driving API Security Breaches appeared first on The Security Ledger with Paul F.

Security 97

Security IoT 97

Dark Reading

JUNE 27, 2023

Cequence’s latest updates to the Unified API Protection platform help organizations reduce the time needed to create API security testing plans.

Security 77

Security 77

Data Breach Today

AUGUST 21, 2023

Traceable AI CSO Richard Bird on Best Practices for Fighting API-Based Attacks Large enterprises may have hundreds or thousands of APIs.

Security 244

Security 244

Data Breach Today

AUGUST 19, 2019

Jacques Declas of 42Crunch on the Need for Frequent Security Updates The lifecycle of security needs to match the lifecycle of APIs, which get replaced very frequently, says Jacques Declas of 42Crunch.

Security 153

Security 153

Data Breach Today

APRIL 18, 2023

Hackers Target PHP Websites With Local File Inclusion Vulnerabilities Hackers have seized on the API revolution to drive a surge in attacks that exploit poorly coded applications, reports Akamai, in a warning echoed by other cybersecurity experts. The vector driving the most growth in API attacks is local file inclusion.

Security 157

Security Cybersecurity 157

Dark Reading

APRIL 19, 2023

Combined solutions expected to deliver complete API visibility and security coverage across all of the OWASP API top 10 attacks.

Security 73

Security 73

Security Affairs

MAY 30, 2020

API Security – There is a considerable demand for data-centric projects, that is why companies have quickly opened their data to their ecosystem through REST or SOAP APIs. APIs work as doors for a company – closely guarding data of an organization. Here are the simple tips for API security, let’s have a look!

Security 126

Security Authentication Encryption Passwords 126

Threatpost

NOVEMBER 3, 2021

API security risk has dramatically evolved in the last two years. Jason Kent, Hacker-in-Residence at Cequence Security, discusses the top API security concerns today and how to address them.

Security 93

Security Risk Cloud 93

The Security Ledger

APRIL 5, 2023

In this Spotlight episode of the Security Ledger podcast, I interview Richard Bird, the CSO of the firm Traceable AI about the challenge of securing application programming interfaces (APIs), which are increasingly being abused to steal sensitive data. What is the fix for API security issues?

Security 52

Security Digital transformation Financial Services Cloud 52

ForAllSecure

MARCH 29, 2023

Application Programming Interfaces (APIs) are a fundamental component of modern software development. APIs allow developers to integrate different software systems, making it easier than ever to create complex applications and services. API Basics: What Is an API and How Do APIs Work? How do APIs work?

Security 40

Security Authentication Passwords Encryption 40

ForAllSecure

MARCH 7, 2023

In May 2021, the fitness company Peloton realized they had a problem with their APIs. The company, known for their fitness bikes, relied upon APIs to log members in and track their progress. The APIs also had access to account details such as name, address, and other personal information. What is API Vulnerability Scanning?

Security 52

Security Compliance Access IT 52

Dark Reading

DECEMBER 23, 2022

APIs are key to cloud transformation, but two Google surveys find that cyberattacks targeting them are reaching a tipping point, even as general cloud security issues abound.

Cloud 95

Cloud Security 95

Dark Reading

JULY 10, 2023

Securing APIs is specialized work. Here's what organizations should look for when selecting an outside partner.

Security 74

Security 74

Data Breach Today

FEBRUARY 23, 2021

Broken object level authorization, or BOLA, vulnerabilities are among the most common and worrisome weaknesses contained in dozens of mobile health applications used by patients and clinicians, posing security and privacy risks to health information, says cybersecurity researcher Alissa Knight.

Security 269

Security Privacy Cybersecurity Risk 269

Data Breach Today

FEBRUARY 2, 2024

Also: AI in Cloud Security, Integrating Zero Trust Principles into API Deployment In the latest weekly update, ISMG editors discussed the potential role of AI in cloud security, how the recent cyberattack on Microsoft by Russian state hackers highlighted the vulnerabilities associated with legacy systems, and how to secure APIs in the age of zero trust. (..)

Cloud 260

Cloud Security 260

Dark Reading

SEPTEMBER 20, 2022

The investment in Salt Security underscores the fact that attacks targeting APIs are increasing.

Security 70

Security 70

Dark Reading

MARCH 2, 2022

Key findings show API attack traffic grew at more than twice the rate of non-malicious traffic, and API security concerns are inhibiting innovation for two-thirds of organizations.

Security 69

Security 69

ForAllSecure

OCTOBER 27, 2021

It’s safe to say that APIs are now a critical part of modern application architectures today. In the age of SaaS applications and infrastructure, many architectures are designed around being API-first for managing data ingestion and retrieval. Mayhem for API is built specifically to test APIs.

Security 52

Security Authentication Cloud IT 52

Threatpost

JULY 8, 2021

The problem APIs included numero uno on the OWASP API Security Top 10: a Broken Object Level Authorization (BOLA) issue that could have exposed personal data.

Security 86

Security Personal data 86

Data Breach Today

JANUARY 9, 2024

API Requests Comprise 57% of Global Dynamic HTTP Traffic, Cloudflare Reports As the use of application programming interfaces to connect software components continues to surge, many organizations lack visibility into precisely how many APIs they're operating, if they're secured or who's meant to have access to them, researchers warn.

Access 296

Access Security 296

ForAllSecure

FEBRUARY 23, 2023

Application programming interfaces, or APIs, are everywhere. Everything from your Fitbit to your car has an API. Even your bank likely has an API that you use when you check your balance or make a payment. With the release of Apple's HomeKit, we're seeing even more devices with APIs appearing in our homes.

IT 52

IT Security Authentication Customer Experience 52

Dark Reading

DECEMBER 30, 2022

API security is so hot right now.

Security 93

Security 93

ForAllSecure

FEBRUARY 3, 2022

API security and testing are critical parts of any company's IT and development strategy. By securing your APIs, you can protect your data and ensure that only authorized users have access to your systems. What is an API? Before we get into API Security, let's quickly level set and review what an API is.

Security 52

Security Authentication Access Communications 52

ForAllSecure

DECEMBER 6, 2022

Shifting left for API security has many benefits. It allows developers to produce better code, catch API issues earlier in the development cycle, and get their work done faster. What Is Mayhem for API? You can use Mayhem for API to test for API defects with each commit or build. Identify API Bugs Sooner.

Security 52

Security Marketing IT 52

Data Breach Today

DECEMBER 5, 2023

Zombie APIs are becoming more common, just because of the sheer number APIs and third-party vendors that organizations rely on. Joshua Scott, head of information security and IT at API platform Postman, says businesses need to identify "what is critical to the business and map backward."

Information Security 260

Information Security Security IT 260

Dark Reading

NOVEMBER 6, 2023

APIs enable cloud transformation but bring security risks, demanding robust, adaptive strategies to safeguard data and operations.

Cloud 68

Cloud Security Risk 68

Dark Reading

APRIL 13, 2021

With APIs predicted to be the most common attack vector by 2022, an API-first security strategy is critical now more than ever.

Security 131

Security 131

Data Breach Today

FEBRUARY 2, 2023

Emmanuel Benzaquen on Why API Abuse Is Such a Pervasive Web Application Data Breach Organizations have struggled to understand why APIs are so strategic even though they're an intrinsic way businesses interface with their software, according to Checkmarx CEO Emmanuel Benzaquen.

Data breaches 130

Data breaches Security 130