API Security Weekly: Issue #144
This week, JustDial has had to re-fix an old API vulnerability that they already fixed in 2019. We also have a set of scripts for automated …
Issues
API Abuse Is a Data Security Issue Here to Stay
Just about every app uses an application programming interface (API). From a security standpoint, though, APIs also come with some common …
API Security Weekly: Issue #143
This week, we have a detailed write-up on finding credit card numbers leaking from a GraphQL API, a lab walkthrough on hacking JSON web …
Apple Issues Urgent iPhone Updates; None for Pegasus Zero-Day
Update now: The ream of bugs includes some remotely exploitable code execution …
DOD and DHS Need More Collaboration on Cybersecurity Issues
A greater level of cooperation is needed between the Department of Defense and the Department of Homeland Security to ensure that U.S. …
API Security Weekly: Issue #142
This week, we take a look at the recently reported API vulnerabilities at Coursera and in one of the Huawei home gateways. We also learn …
SolarWinds Issues Patches in Wake of Zero-Day Attacks
3rd Party Risk Management , Application Security , Critical Infrastructure Security SolarWinds Issues Patches in Wake of Zero-Day Attacks …
API Security Weekly: Issue #141
This week, we take a look at insecure API traffic in the VeryFitPro Android app, how APIs were used to scrape user profile data from Gettr, …
Microsoft: PrintNightmare now patched on all Windows versions
Microsoft has released the KB5004948 emergency security update to address the Windows Print Spooler PrintNightmare vulnerability on all …
Microsoft Issues Emergency Patch for Windows Flaw
Microsoft on Tuesday issued an emergency software update to quash a security bug that’s been dubbed “PrintNightmare,” a critical …
Install immediately: Microsoft delivers emergency patch for PrintNightmare security bug
Microsoft has released an out-of-band patch for the security flaw known as PrintNightmare that is under attack already and lets attackers …