As the year draws to a close, it’s worth pausing to look back on what has been an extraordinary year for Wallarm and, more importantly, for the businesses we protect. If 2024 was about laying the groundwork (tracking API sessions to understand behavioral attacks), then 2025 was the year we built upon that foundation, turning insight into action and visibility into measurable business impact. API Sessions: From Observation to Action We started the API sessions…
On December 3, 2025, React maintainers disclosed a critical unauthenticated remote code execution (RCE) vulnerability in React Server Components (RSC),…
The API supply chain is the new security blind spot. Attackers no longer need to breach your APIs directly; they…
Earlier this month, Microsoft uncovered SesameOp, a new backdoor malware that abuses the OpenAI Assistants API as a covert command-and-control…
Can you ever imagine the impact on your business if it went offline on Black Friday or Cyber Monday due…
Over the past few years, API security has gone from a relatively niche concern to a headline issue. A slew…
Wallarm’s latest Q3 2025 API ThreatStats report [link placeholder] reveals that API vulnerabilities, exploits, and breaches are not just increasing;…
As Cybersecurity Awareness Month continues, we wanted to dive even deeper into the attack methods affecting APIs. We’ve already reviewed…
What can we learn from the recent AWS outage, and how can we apply those lessons to our own infrastructure?…
API security has never been more important because modern APIs are operational necessities. Unfortunately, many organizations are failing to adapt…
Authentication issues seem like low-level attacks. But authentication today – especially API authentication – can be more difficult than people…