Wallarm — Page 2 of 41 — Advanced API Security

In API Security

Wallarm Halts Remote Code Execution Exploits: Defense for Vulnerable React Server Component Workflows

December 4, 2025 2 Mins Read

On December 3, 2025, React maintainers disclosed a critical unauthenticated remote code execution (RCE) vulnerability in React Server Components (RSC), tracked as CVE-2025-55182. A working PoC was released publicly, and Wallarm immediately began observing widespread exploitation attempts across customer environments. What is CVE-2025-55182? CVE-2025-55182 is an unauthenticated remote code execution (RCE) vulnerability, rated CVSS 10.0, and it is already being actively exploited in the wild. For more details, you can refer to this advisory. The…

In API Security

Attackers Don’t Need to Breach Your API -They’ll Breach the Tools That Touch It

December 3, 2025 2 Mins Read

The API supply chain is the new security blind spot. Attackers no longer need to breach your APIs directly; they…

In API Security

When your AI Assistant Becomes the Attacker’s Command-and-Control

November 19, 2025 4 Mins Read

Earlier this month, Microsoft uncovered SesameOp, a new backdoor malware that abuses the OpenAI Assistants API as a covert command-and-control…

In API Security

APIs Are the Retail Engine: How to Secure Them This Black Friday

November 19, 2025 4 Mins Read

Can you ever imagine the impact on your business if it went offline on Black Friday or Cyber Monday due…

In API Security

OWASP Top 10 Business Logic Abuse: What You Need to Know

November 12, 2025 3 Mins Read

Over the past few years, API security has gone from a relatively niche concern to a headline issue. A slew…

In API Security

When APIs Become Attack Paths: What the Q3 2025 ThreatStats Report Tells Us

October 30, 2025 3 Mins Read

Wallarm’s latest Q3 2025 API ThreatStats report [link placeholder] reveals that API vulnerabilities, exploits, and breaches are not just increasing;…

In API Security

API Attack Awareness: Business Logic Abuse — Exploiting the Rules of the Game

October 27, 2025 3 Mins Read

As Cybersecurity Awareness Month continues, we wanted to dive even deeper into the attack methods affecting APIs. We’ve already reviewed…

In API Security

AWS Outage: Lessons Learned

October 23, 2025 12 Mins Read

What can we learn from the recent AWS outage, and how can we apply those lessons to our own infrastructure?…

In API Security

Key API Security Takeaways from the Postman 2025 State of API Report

October 21, 2025 10 Mins Read

API security has never been more important because modern APIs are operational necessities. Unfortunately, many organizations are failing to adapt…

In API Security

API Attack Awareness: When Authentication Fails — Exposing APIs to Risk

October 14, 2025 3 Mins Read

Authentication issues seem like low-level attacks. But authentication today – especially API authentication – can be more difficult than people…

In API Security

Wallarm: API Security Platform of the Year 2025

October 10, 2025 3 Mins Read

2025 has been one of Wallarm’s biggest years yet. In the last few months alone, we unveiled our industry-first API…