API vulnerabilities
Researchers Find Flaws in OpenAI ChatGPT, Google Gemini
The number of generative AI chatbots and their adoption by enterprises have exploded in the year-plus since OpenAI rolled out ChatGPT, but so have concerns by cybersecurity pros who worry not only ...
Security Boulevard
Navigating the Sea, Exploiting DigitalOcean APIs
Cloud service providers are now fundamental elements of internet infrastructure, granting organizations and individuals the ability to scale and efficiently store, manage, and process data. DigitalOcean is one such provider, well-regarded for ...
How to Secure All Your APIs Through Multiple Deployment Options
Grainne McKeever | | advanced bot protection, api, API protection, API security, API vulnerabilities, Application Security, bot mitigation, Business Logic Attack
Imperva has invested in strengthening our API Security offering to meet the needs of customers since the acquisition of CloudVector in 2021. Since then, the product’s capabilities have expanded, positioning it as ...
Remote Unauthenticated API Access Vulnerabilities in Ivanti
Mayank Kumar | | API vulnerabilities, CVE-2023-35078, CVE-2023-35082, Ivanti Zero day vulnerability, security bulletin
The API vulnerabilities in Ivanti CVE-2023-35078, and CVE-2023-35082, are rated 10 on CVSS. Explore their characteristics and mitigation measures. The post Remote Unauthenticated API Access Vulnerabilities in Ivanti appeared first on Indusface ...
Salesforce Communities Misconfig Puts Clients, Partners at Risk
Teri Robinson | | api, API vulnerabilities, AppSec, Data Security, Salesforce, salesforce communities
A misconfiguration in a Salesforce community discovered by Varonis researchers could expose data to anyone on the internet. “Anonymous users can query objects that contain sensitive information such as customer lists, support ...
Security Boulevard
The State of Web Application Vulnerabilities in 2018
Nadav Avital | | API vulnerabilities, Application Security, CMS vulnerabilities, content management system vulnerabilities, Cybersecurity, Drupal vulnerabilities, IoT vulnerabilities, Research & Reports, wordpress vulnerabilities
(Jan. 12 update: Due to a data transfer error, some of the 2017 figures were incorrectly reported; this version of the blog has been corrected. This error did not affect our 2018 ...