Kelsey Winiarski, Author at Security Boulevard

Hot Topics

The Battle Against Business Logic Attacks: Why Traditional Security Tools Fall Short

Kelsey Winiarski | July 11, 2023 | Application Security, BLA, Business Logic Attack

As the digital landscape continues to evolve, so do the tactics utilized by bad actors that are seeking to exploit application vulnerabilities. Among the most insidious types of attacks are business logic attacks (BLAs). Unlike known attacks, which can be identified by signatures or patterns, such as SQL injection attacks, ... Read More

Blog

Out with the WAF, in with the WAAP

Kelsey Winiarski | October 18, 2022 | account takeover, advanced bot protection, API security, Application Security, bad bots, cross-site scripting, DDoS Protection, Digest, OWASP Top 10, sql injection, WAAP

Advanced attacks call for advanced protection Bad actors are constantly discovering new attack vectors to exploit applications. To meet the threat, organizations need enterprise-level security more now than ever. Traditionally, implementing a Web Application Firewall (WAF) would be enough to secure organizations from most application attacks. As application development becomes ... Read More

Blog

Attack Analytics Helps You Find the Monsters Under the Bed

Kelsey Winiarski | October 4, 2022 | Application Security, Attack Analytics, Digest

Alert fatigue kills data breach detection efforts Is there anything more frightening than missing a cyber attack? For most organizations, the answer is no. However, for many security teams, it’s challenging to tune alerts properly to minimize false positives and still be alerted to potential attacks. Too many security tools, ... Read More

Blog

At Kong Summit 2022, Imperva Will Demonstrate how to Use Terraform to Onboard Kong-managed Apps and Discover API Endpoints

Kelsey Winiarski | September 27, 2022 | Alert Fatigue, API security, Application Security, Attack Analytics, Digest, OWASP Top 10, pii, Terraform, WAAP

Imperva and Kong are working together to simplify APIs Imperva is attending Kong’s 2022 Summit on September 28 and 29 in San Francisco. Imperva’s Summit booth will feature both a recorded and live demo built to showcase how Kong and Imperva seamlessly integrate using Terraform. Imperva, a recognized leader in ... Read More

Blog

“Oops, I insecurely coded again!”

Kelsey Winiarski | September 20, 2022 | Application Security, Digest, OWASP Top 10, runtime protection, SAST, Secure Software Development Lifecycle, sql injection, zero day protection

The call is coming from inside the house It’s no secret that companies need to be vigilant about application security. However, frequently the source of application vulnerabilities may come as a surprise to security teams. While zero-day exploits are a principal focus of vulnerability mitigation strategies, they are just the ... Read More

Blog

Why the Search for Best-Of-Breed Tooling is Causing Issues for Security Teams

Kelsey Winiarski | September 7, 2022 | Alert Fatigue, API security, Application Security, Digest, SIEM, UEBA, Web Application Firewall

The growing need to consolidate vendor portfolios The adoption of best-of-breed security solutions has led to unforeseen problems for SOCs. Onboarding a new solution increases complexity; it requires configuration, integration with existing tools, fine-tuning policies, and the ability to create meaningful alerts that can be quickly acted upon. Since most ... Read More

Blog