What do you know about your APIs? Why are the vulnerable v2 and v3 still exposed if they are deprecated for almost a year? What else is exposed and you don’t even know? Are Swagger specs up to date? (Teaser: Surely not). A lot of questions, right? Meet Wallarm’s latest feature for API Discovery and Observability to better understand and protect your APIs in cloud-native environments. What is Wallarm API Discovery? Wallarm API Discovery identifies…
HTTP/2 become the standard defacto for the modern web and causes new application security risks. The HTTP2 request smuggling is…
Welcome to our weekly exploit digest! We should say this hasn’t been a big week because guys keep producing exploits…
Welcome to the Wallarm weekly web exploits digest! Since this week, we will publish our weekly digests consists of web…
The recent critical security issue in VMware vCenter was discovered this January and fixed on February 23rd https://www.vmware.com/security/advisories/VMSA-2021-0002.html. The exploit looks like…
Grammarly is the unicorn company that announced its open bug bounty program last September. Since that time, many security researchers…
Most of the Wallarm e-commerce customers are running WAF protection with Brute-Force attacks protection functionality
The risks involved with the operatorAliases option in Sequelize, the popular library for DBMSs
Consul is a software first released in 2014 for DNS-based service discovery. It provides distributed key-value storage, segmentation, and configuration.…
New critical Apache Unomi exploit was released yesterday. As an official press release says: “Apache Unomi is the industry’s first…
In the latest version of Wallarm Node, we integrated a new attack detection engine that will work with a combination…
