Subscribe to the Salt blog to learn about the latest developments in API Security

Posts tagged |

Salt Labs

Featured Post

Increasing API Traffic, Proliferating Attack Activity and Lack of Maturity: Key Findings from Salt Security’s 2024 State of API Security Report

Salt Labs
June 18, 2024

The latest Salt Security State of API Security Report is out now, and we’re thrilled to give a little sneak peek of its contents.

Posts

June 18, 2024

Salt Labs
Research Team
Research
Salt Labs

Salt Labs

Increasing API Traffic, Proliferating Attack Activity and Lack of Maturity: Key Findings from Salt Security’s 2024 State of API Security Report

The latest Salt Security State of API Security Report is out now, and we’re thrilled to give a little sneak peek of its contents.

Read more

May 17, 2024

Hadar Freehling
Principal Solution Engineer
API Attack Analysis
Salt Labs
API Security Strategy

Salt Labs

The Dell API Breach: It could have been prevented

The API attack on Dell illustrates why API protection is so complex and why you need a tool like Salt to help.

Read more

March 13, 2024

Aviad Carmel
Security Researcher
Salt Labs
API Vulnerability Analysis
API Security Strategy
API Attack Prevention

Salt Labs

Security Flaws within ChatGPT Ecosystem Allowed Access to Accounts On Third-Party Websites and Sensitive Data

Salt Labs researchers identified generative AI ecosystems as a new interesting attack vector. vulnerabilities found during this research on ChatGPT ecosystem could have granted access to accounts of users, including GitHub repositories, including 0-click attacks.

Read more

October 24, 2023

Aviad Carmel
Security Researcher
Salt Labs
Research

Salt Labs

Oh-Auth — Abusing OAuth to take over millions of accounts

It’s extremely important to make sure your OAuth implementation is secure. The fix is just one line of code away. We sincerely hope the information shared in our blog post series will help prevent major online breaches and help web service owners better protect their customers and users.

Read more

June 14, 2023

Salt Labs
Research Team
Salt Labs
API Vulnerability Analysis
Research

Salt Labs

CVE-2023-34362 - Zero-Day Vulnerability Discovered in MOVEit Transfer is Exploited in the Wild by Cl0p Ransomeware — Here’s What you Need to Know

On May 29, 2023, a critical security vulnerability, identified as CVE-2023-34362, was published. Learn the details of this vulnerability, its implications, and recommendations for users to mitigate the risk.

Read more

May 24, 2023

Aviad Carmel
Security Researcher
Salt Labs
API Vulnerability Analysis
Research

Salt Labs

Salt Labs exposes a new vulnerability in popular OAuth framework, used in hundreds of online services

This post details issues identified in a popular framework used by many online services to implement OAuth (as well as other functionality). Salt Labs findings show that services using this framework are susceptible to credentials leakage.

Read more

Tags

API Attack Analysis
API Attack Methodology
API Attack Prevention
API Posture Governance
API Security 101
API Security Strategy
API Vulnerability Analysis
Awards
CISO
Company Updates
Compliance
Customers
Events
Financial Services
Insurance
OWASP API Top 10
Product Updates
Research
Salt Labs
Technology Partners
Video
Webinar
eBook

Salt Security Blog

Sign up for the Salt Newsletter for the latest resources and blog posts.