Spring4Shell Vulnerability Overview On 29-March-2022, a zero-day vulnerability in the Spring Java Framework was published by a Chinese Twitter account and referred to as “Spring4Shell.” At first, the vulnerability was confused with another security issue that affects Spring Cloud Functions (CVE-2022-22963) ... Read More

As APIs grow in strategic importance, organizations are gradually increasing their level of API security maturity and sophistication ... Read More

This month marks Women’s History Month, and today we celebrate International Women’s Day by praising the invaluable contributions that women bring to the cybersecurity industry ... Read More

The rise of APIs is not a new phenomenon, but the rise of API security is just beginning. APIs power the world's economy today by enabling access to the crown jewels of data. The security blindspot of APIs is growing bigger with every new API that is created and launched ... Read More

Overview of the Log4j vulnerability On December 9, a vulnerability in the Java Log4j logging library was publicly disclosed. Tracked as CVE-2021-44228 and with a CVSS risk score 10, this remote code execution (RCE) zero-day vulnerability is being exploited in the wild ... Read More

APIs are the connective tissue that powers digital transformation for many businesses. From online customer experiences to business partner collaboration to powerful new capabilities like the Internet of things (IoT), APIs unlock limitless possibilities for innovation and growth ... Read More

Many security executives find themselves navigating through a perfect storm when it comes to API security. While APIs aren’t new, they’ve taken on much greater strategic importance in recent years now that: ... Read More