API Security Posture
Coinbase Fixes Vulnerable API that Let You Sell Bitcoin You Didn’t Own
On Friday, February 11th 2022, a security researcher (Tree_of_Alpha on Twitter) discovered a flaw in Coinbase’s new Advanced Trading feature that allowed users to sell cryptocurrencies without owning them. According to the ...
‘Tis the Season for API Vulnerabilities: First Log4j, Now WordPress
The Holiday Season has not been kind to security professionals. Less than two weeks ago, the world was caught off guard by a Log4j vulnerability called Log4Shell. This week, a new vulnerability ...
3 API Security Lessons from “Scorched Earth: Hacking Bank APIs”
Ethical hacker Alissa Knight opened the eyes of the banking industry yesterday in her Money 20/20 keynote presentation entitled “Scorched Earth: Hacking Bank APIs”. In her presentation, Alissa revealed that she was ...
