Subscribe to the Salt blog

Privacy Policy

Get the latest Gartner® insights on API Protection

Learn more
Posts  by
Salt Labs
Subscribe to Salt blog

OpenSSL Vulnerability Analysis – Denial of Service and Remote Code Execution

Insights regarding two new vulns that have been uncovered in the OpenSSL library – CVE-2022-3602 and CVE-2022-3786. These vulnerabilities affect OpenSSL.

Salt Labs
November 3, 2022

API Security Incidents Nearly Universal Finds Latest “State of API Security” Report

State of API Security Report data highlights a daunting scenario: exploding attack activity, insufficient existing practices, and teams ill-prepared to address API security.

Salt Labs
August 3, 2022

API Threat Research: Server-side Request Forgery on FinTech Platform Enabled Administrative Account Takeover

The Salt Labs team helps customers and prospects discover vulnerabilities in their APIs. In this case, we investigated the platforms of a large US-based FinTech company.

Salt Labs
April 7, 2022

Spring4Shell – What Happened, Who’s Vulnerable, and How to Mitigate

The Salt Labs team looks to clear up some confusion, explain what Spring4Shell really is, share who might be impacted, and offer tips for mitigating your risk.

Salt Labs
March 31, 2022

Companies are Struggling Against a 681% Increase in API Attacks, the Latest “State of API Security” Report Shows

Salt Security releases the latest findings of its bi-annual report on API security trends

Salt Labs
March 2, 2022

Understanding the Coinbase API Vulnerability

A Twitter user posted about a security flaw he "accidentally” found in Coinbase. Tweets like these have become popular with so many vulnerability discoveries shared. Read why this case was indeed special.

Salt Labs
February 22, 2022

The Log4Shell CVE-2021-44228 Vulnerability: What it is, how it works, and how to protect yourself

News of the recently discovered vulnerability called “Log4Shell,” “LogJam,” or its formal designation “CVE-2021-44228” has deservedly earned widespread attention. Learn what it is, how it works, and how to protect yourself.

Salt Labs
December 11, 2021

API Threat Research: GraphQL Authorization Flaws in Financial Technology Platform

Salt Labs researchers investigated a large B2B FinTech platform that offers financial services in the form of API-based mobile apps and SaaS to SMB and commercial brands.

Salt Labs
December 8, 2021

API Threat Research: Elastic Stack Misconfiguration Allows Data Extraction

Salt Labs researchers investigated a large business-to-consumer (B2C) online platform that provides API-based mobile applications and software as a service to millions of users globally. 

Salt Labs
September 29, 2021

API Attacks up 348% in Six Months, per Latest “State of API Security” Report

The data makes it clear: more companies are suffering more API attacks than ever, and companies remain as ill-prepared as ever.

Salt Labs
July 28, 2021

API Threat Research: Detailed Financial Records Exposed on Financial Services Platform

Threat research report shares information to improve awareness around API security by detailing relevant attack patterns, technical details, and mitigation techniques for each vulnerability.

Salt Labs
July 14, 2021

Tags

API Attack Analysis
API Attack Methodology
API Attack Prevention
API Security 101
API Security Strategy
API Vulnerability Analysis
Awards
CISO
Company Updates
Compliance
Customers
Events
Financial Services
OWASP API Top 10
Product Updates
Research
Salt Labs
Technology Partners
Video
Webinar

More Posts Authors

Clear filters