News and Trends

How the HR System Enabled my Promotion to CEO

| | API security, BOLA, News and Trends, shadow API, Webinar
Just kidding. I am happy to remain an individual contributor. However, if the HR system API had been implemented without the appropriate levels of authorization control, commonly referred to as broken object-level ...
Cequence
Aite Group Research Validates API Security Gaps

Aite Group Research Validates API Security Gaps

| | analyst, api, API security, API Sentinel, News and Trends
2020 is moving into the final quarter and it appears to be the year of the API security incident with MGM, Starbucks, Data Viper and Docker as just a few examples of ...
Cequence
Cequence API Sentinel Demo

API Security Need-to-Know: Ramifications of Weak API Authentication

| | api, API Attack, API security, API vulnerability, News and Trends, Threat, ZIPNet
In today’s blog, we will discuss the ramifications of unauthenticated APIs using the recently published ZIPNet vulnerability. ZIPNet is an online application operated by Law Enforcement Authorities in India to share Crime ...
Cequence
Kasa Security

Kasa Camera Vulnerability Discovery: Responsible Disclosures Feel Like Groundhog Day, Again

| | API security, ATO, bot attacks, credential stuffing, General, News and Trends, vulnerability discovery
When APIs Say Too Much As a Midwesterner and hobby farmer I spend a lot of time solving problems. A few months ago I encountered a problem where a live 2-month-old cucumber ...
Cequence

New Survey Highlights Need for API Visibility

| | API security, automated attacks, General, News and Trends, Threat Research, Uncategorized
There’s an old saying “you don’t know what you don’t know.” While there are many ways that we can go about filling the gaps in our knowledge – more reading and education, ...
Cequence