Tag: Api Security
-
Is Service Mesh Right for Your Infrastructure?
Andrew Jenkins of Aspen Mesh identifies three deployment options with regards to how a Service Mesh delivers its services: As a sidecar …
-
API Security Weekly: Issue #96
This week, we take a look at the recent vulnerability in Cisco Data Center Network Manager, as well as the API aspect of the data breach at …
-
How to Properly Leverage Elasticsearch and User Behavior Analytics for API Security
Kibana and the rest of the ELK stack (Elasticsearch, Kibana, Logstash) is great for parsing and visualizing API logs for a variety of use …
-
API Security Weekly: Issue #95
This week, we have recent vulnerabilities in Zoom and OkCupid, progress on the draft for OAuth 2.1, and a video tutorial on discovering …
-
OWASP Top 10 API Security
I am sure that almost all of you would be aware about OWASP. But, just for the context let me just brief about the …
-
API Security Weekly: Issue #94
This week, we have a potential username exposure in WordPress APIs, an upcoming API security training at the Black Hat USA 2020 conference, …
-
API Security Weekly: Issue #92
Pen Test Partners take a dive deep into why API vulnerabilities are so common in the cheaper smart tracker devices, and we also look at a …
-
API Security Weekly: Issue #91
This week, we check out the recent OAuth bypass at SEMrush, common JWT implementation mistakes and the Semgrep tool, regular expression …
-
API Security Weekly: Issue #90
This week, we take a look at how Twitter API erroneously allowed browsers to cache sensitive data, and how skimmers have found a way to use …
-
API Security Weekly: Issue #88
This week, we take a break from vulnerabilities and direct our gaze to the wider landscape of API security. On the practical side, we have …
-
Running ConnectWise Automate on-prem? Fix this high-risk API vulnerability
ConnectWise has fixed a high-severity vulnerability affecting a ConnectWise Automate API and is urging users who run the solution on their …
●●●