Bill Doerrfeld Bill Doerrfeld is a tech journalist and analyst based in Seattle. His beat is cloud technologies, specifically the web API economy. He began researching APIs as an Associate Editor at ProgrammableWeb, and since 2015 has been the Editor at Nordic APIs, a high impact blog on API strategy for providers. He loves discovering new trends, researching new technology, and writing on topics like DevOps, REST design, GraphQL, SaaS marketing, IoT, AI, and more. He also gets out into the world to speak occasionally.
Bill Doerrfeld
The State of Open Source Cloud-Native Security
Bill Doerrfeld | | Cloud Security, Cloud-Native Security, open source, OpenSSF, SBOMs, Software Security
As 2024 kicks off, here's where cloud-native supply chain security stands and what to expect in the immediate future ... Read More
Security Boulevard
Using ML to Accelerate Incident Management
If adopted correctly, AI and ML could advance incident response efforts by spotting errors and vulnerabilities, communicating issues and improving defensive postures ... Read More
Security Boulevard
OWASP Updates Top 10 API Security Risks
OWASP recently updated its API Security Top 10, which describes the top risks inherent in insecure APIs ... Read More
Security Boulevard
Reviewing the OWASP Machine Learning Top 10 Risks
The OWASP Machine Learning Security Top 10 analyzes the most common vulnerabilities associated with machine learning ... Read More
Security Boulevard
Understanding the OWASP Top 10 for LLMs
Bill Doerrfeld | | Application Security, AppSec, Artificial Intelligence, generative AI, LLMs, owasp
The OWASP Top 10 for LLM Applications draft provides a comprehensive review of the AppSec challenges within LLM development ... Read More
Security Boulevard
Why Generative AI is a Threat to API Security
Generative AI can be used to amplify cybercriminals' nefarious deeds against web applications, especially those that rely heavily on APIs ... Read More
Security Boulevard
How to Strengthen Cybersecurity in the Age of AI
To get ahead of the adversaries in this new AI age, cybersecurity research into new generative AI attacks and defenses must be further along ... Read More
Security Boulevard
Comparing Cloud Providers’ Shared Responsibility Models
More and more enterprises are becoming multi-cloud. And when evaluating cloud service providers (CSPs) for different needs, one important factor is security. Yet, CSPs aren’t responsible for securing everything—depending on the component in question, you may be left on your own to ensure it’s adequately safeguarded in the cloud. Thus, ... Read More
Security Boulevard
70% of US IT Leaders Told Not to Disclose Data Breaches
Not all cybersecurity breaches get reported. A new report from Bitdefender found that although IT leaders have an obligation to report attacks, over 42% of them have been told to keep quiet when a breach should have been reported. Shockingly, in the U.S., this number rises to 70.7%. IT leaders ... Read More
Security Boulevard
How CISOs Can Influence API Security Change
Security incidents can cost a chief information security officer (CISO) their job. For example, cybersecurity breaches at Capital One, Uber, Equifax and plenty of others have led to the firing or forced resignation of the companies’ respective CISOs. Whether all these removals were fair is up for debate, but regardless, ... Read More
Security Boulevard