Wallarm — Advanced API Security

In API Security

CISO Spotlight: Lefteris Tzelepis on Leadership, Strategy, and the Modern Security Mandate

December 19, 2025 4 Mins Read

Lefteris Tzelepis, CISO at Steelmet /Viohalco Companies, was shaped by cybersecurity. From his early exposure to real-world attacks at the Greek Ministry of Defense to building and leading security programs inside complex enterprises, his career mirrors the evolution of the CISO role itself. Now a group CISO overseeing security across multiple organizations, Lefteris brings a practitioner’s mindset to leadership and incident response. In this spotlight, he shares how military-grade security thinking influenced his approach, why…

In API Security

2026 API and AI Security Predictions: What Experts Expect in the Year Ahead

December 11, 2025 3 Mins Read

This is a predictions blog. We know, we know; everyone does them, and they can get a bit same-y. Chances…

In API Security

Update on React Server Components RCE Vulnerability (CVE-2025-55182 / CVE-2025-66478)

December 8, 2025 5 Mins Read

The attack landscape has been dynamic following the disclosure of the React Server Components RCE vulnerability. New information has emerged…

In API Security

2025 in Review: A Year of Smarter, Context-Aware API Security

December 4, 2025 3 Mins Read

As the year draws to a close, it’s worth pausing to look back on what has been an extraordinary year…

In API Security

Wallarm Halts Remote Code Execution Exploits: Defense for Vulnerable React Server Component Workflows

December 4, 2025 2 Mins Read

On December 3, 2025, React maintainers disclosed a critical unauthenticated remote code execution (RCE) vulnerability in React Server Components (RSC),…

In API Security

Attackers Don’t Need to Breach Your API -They’ll Breach the Tools That Touch It

December 3, 2025 2 Mins Read

The API supply chain is the new security blind spot. Attackers no longer need to breach your APIs directly; they…

In API Security

When your AI Assistant Becomes the Attacker’s Command-and-Control

November 19, 2025 4 Mins Read

Earlier this month, Microsoft uncovered SesameOp, a new backdoor malware that abuses the OpenAI Assistants API as a covert command-and-control…

In API Security

APIs Are the Retail Engine: How to Secure Them This Black Friday

November 19, 2025 4 Mins Read

Can you ever imagine the impact on your business if it went offline on Black Friday or Cyber Monday due…

In API Security

OWASP Top 10 Business Logic Abuse: What You Need to Know

November 12, 2025 3 Mins Read

Over the past few years, API security has gone from a relatively niche concern to a headline issue. A slew…

In API Security

When APIs Become Attack Paths: What the Q3 2025 ThreatStats Report Tells Us

October 30, 2025 3 Mins Read

Wallarm’s latest Q3 2025 API ThreatStats report [link placeholder] reveals that API vulnerabilities, exploits, and breaches are not just increasing;…

In API Security

API Attack Awareness: Business Logic Abuse — Exploiting the Rules of the Game

October 27, 2025 3 Mins Read

As Cybersecurity Awareness Month continues, we wanted to dive even deeper into the attack methods affecting APIs. We’ve already reviewed…

Book a Demo