Welcome to the 10th post in our weekly series on the new 2023 OWASP API Security Top-10 list, with a particular focus on security practitioners. This post will focus on API9:2023 Improper Inventory Management. In this series we are taking an in-depth look at each category – the details, the impact and what you can do about it. To see previous posts you might have missed, click here. TL;DR When an API or the environment…
Last week, our good friend Raj Umadas, Director of Security at ActBlue, teamed up with our very own Tim Erlin,…
Welcome to the 9th post in our weekly series on the new 2023 OWASP API Security Top-10 list, with a…
Welcome to the 8th post in our weekly series on the new 2023 OWASP API Security Top-10 list, with a…
If you’re in the Albuquerque area this Friday and/or Saturday, we hope you’re planning on going to BSides ABQ –…
Welcome to the 7th post in our weekly series on the new 2023 OWASP API Security Top-10 list, with a…
Welcome to the 6th post in our weekly series on the new 2023 OWASP API Security Top-10 list, with a…
It’s been reported that 2.6 million user records sourced from the Duolingo app are for sale. The attacker apparently obtained…
We recently discussed the new SEC rule requiring all registered companies to report material cyber incidents within four (4) days.…
The Wallarm API Discovery module has been further enhanced to enable customers to identify Orphan APIs and bring them under…