Over the last several years, attackers have changed their tactics, focused on identifying and exploiting business logic gaps by manipulating and abusing APIs.
We chose to investigate the services provided by LEGO, perhaps the most famous toy manufacturer in the world – because we contend this example sheds light on the reality of quick adoption of APIs and the risks that can come with that fast pace.
To adopt open banking fully, consumers must trust the safety and security of their data, and to woo customers, banks must apply new security measures in this new digital banking world.
We just raked in our 11th award of the year, earning Gold status as the top winner in the “Best Enterprise Product – Security Software” category of the Best in Biz Awards.
Salt Security empowers Open Line to block API security threats and accelerate their customers’ digital innovation with an API security-as-a-services offering.
Dr. Anton Chuvakin, security advisor at Office of the CISO, Google Cloud, joined our recent API Security Summit. Dr. Chuvakin’s session – co-hosted by Salt Security's Michelle McLean – provided an in-depth discussion on why API security has become a “now” problem.
The monetary growth opportunities promised by APIs are immense, but to harness them, CISOs must ensure the protection of their APIs.
With the industry moving to microservices and API-driven applications, new security threats and attack vectors have emerged. The PCI Security Standards Council has worked to address these threats in its newest PCI DSS 4.0 standard.
The Salt Security API Protection Platform has won the “Data Security” category in this year’s 2022 CRN Tech Innovator Awards.
Our award-winning Salt Security API Protection Platform has been added to the Azure Marketplace and we have achieved Azure IP Co-sell Ready status.
It’s not enough to find and block attackers exploiting a vulnerability in your API. You will also want to remediate the security gap in your APIs.
Insights regarding two new vulns that have been uncovered in the OpenSSL library – CVE-2022-3602 and CVE-2022-3786. These vulnerabilities affect OpenSSL.
Why are we seeing such a constant stream of API-based attacks? Quite simply, APIs are lucrative for attackers.
Zombies, Shadows, and Ghosts hide in plain sight as APIs in your infrastructure, quietly extending your attack surface, patiently waiting to be called upon by some black hat.
Learn what an API Gateway is and get a better understanding of how the various API tools can layer together to detect and prevent the most frequent API attacks.
We've been incredibly busy welcoming two new execs, launching our second API Security Summit, welcoming new customers, and rolling out our updated branding.
Get all your API security questions answered and learn what’s needed to effectively protect your organization’s APIs across the entire API lifecycle.
Like many other API breaches, the Optus security incident highlights the importance of dedicated API security.