Displaying items by tag: API security

The API Security product introduced by content delivery network and cloud provider Akamai Technologies has achieved the latest Payment Card Industry Data Security Standard compliance.

GUEST OPINION: In 2024, it’s clear that cybersecurity will remain a top priority for organisations and governments worldwide. The evolving threat landscape demands constant vigilance and adaptation to emerging risks. Developing and implementing proactive cybersecurity strategies will be critical to staying ahead of cyber adversaries and safeguarding digital assets in the years to come.

COMPANY NEWS:  New research uncovers heightened cyber risks for retailers as attackers elevate techniques

COMPANY NEWS:  Cequence Unified API Protection on HPE GreenLake significantly improves visibility and protection while reducing costs and minimizing fraud, business disruption, data losses and non-compliance

COMPANY NEWS: Cequence Security, the leading provider of unified API protection, today shared details of its growth during the second half of FY23. Cequence's unique approach to uncovering and preventing API threats that can lead to fraud, business logic attacks and data loss has resulted in the company protecting US$9 trillion in assets among Fortune/Global 500 companies and more than two billion user accounts worldwide. In addition, 24% of our customers are Global/Fortune 500.

GUEST OPINION: Shadow APIs have become a significant threat to IT security in recent years. They are increasingly being exploited by cybercriminals to gain unauthorised access to systems with the objective of causing disruption or loss.

GUEST OPINION: The Australian Signals Directorate's Australian Cyber Security Centre (ACSC), US Cybersecurity and Infrastructure Security Agency (CISA), and US National Security Agency (NSA) have released a joint cybersecurity advisory warning vendors, designers, and developers of web applications and organisations using web applications about insecure direct object reference (IDOR) vulnerabilities, also known as broken object level authorisation (BOLA) vulnerabilities.

Gas and electricity provider Jemena has chosen the Salt Security API Protection Platform to protect its critical gas and electricity infrastructure.

API protection specialist Cequence Security has updated its unified API protection platform, allowing customers to rapidly deploy API security testing with built-in generative AI automation, protect users from online fraud, and operationalise security findings with low-code/no-code workflows.

GUEST OPINION: They've been in use since the early 2000s, yet the popularity of public application programming interfaces continues to rapidly increase. They have now replaced web apps as the preferred means of computer-to-computer communication.

The recent high-profile exploitation of a public-facing API at an Australian company has highlighted a risk that many had warned was coming.

GUEST OPINION by Matias Madou, Co-Founder and Chief Technology Officer, Secure Code Warrior:  The world has become increasingly reliant on software to make everything work, and application programming interfaces (APIs) play a key role in that. Whether seeking a weather update, participating in an online event, collaborating with colleagues, or engaging in a telehealth consultation, APIs enable software components to talk to each other in the background to both make user requests and respond to them.

GUEST OPINION: Venafi, the inventor and leading provider of machine identity management, has released its predictions for the cybersecurity landscape in 2023, indicating that this will be one the most challenging years yet for the cybersecurity industry.

COMPANY NEWS: Cequence Security, the leading provider of unified application program interface (API) protection, today shared details of its record growth during the first half of FY22 and the appointment of Wei Wang as chief financial officer.

GUEST OPINION: Many companies, including GitHub, Credit Karma, Intuit and PayPal use GraphQL, which is a query language for application programming interfaces and a runtime for fulfilling queries with existing data.

GUEST RESEARCH: Radware, a leading provider of cyber security and application delivery solutions, today released its 2022 State of API Security report. The survey, which was conducted with Enterprise Management Associates, revealed a false sense of security among organisations when it comes to API protection.

Barracuda Cloud Application Protection strengthens web application and API security, adds account takeover protection, boosts client-side supply chain attack protection, and includes new technology integration with Venafi

Security specialist Imperva has launched Imperva API Security to provide continuous API discovery and data classification.

COMPANY NEWS: Neosec, the pioneer in discovering and protecting APIs using behavioural analytics, today announced that it has formed a strategic partnership with Kong to integrate its API security platform with Kong Gateway to provide a complete enterprise-class solution for managing and securing APIs and microservices. Kong provides the world's most popular API gateway, built for hybrid, multi-cloud environments optimised for microservices and distributed architectures. Neosec enables Kong customers to easily gain enterprise API security capabilities to protect their critical business processes. Neosec continuously discovers all APIs, and using API behavioural analytics, detects abuse and automatically orchestrates conditional responses on specific consumer entities into the Kong API gateway. The technology integration is the first API security solution with closed loop feedback into an API gateway.

GUEST RESEARCH: Fastly, a global edge cloud platform provider, today released new research in partnership with Enterprise Strategy Group (ESG) that uncovers a crucial need for a unified, modern, and simplified approach to security. The study, based on insights from information security and IT professionals in Australia and globally, revealed growing concerns around adequately securing the rapidly rising number of mission-critical cloud services and API-centric applications introduced as part of ongoing digital transformations.

Global cybersecurity company Imperva is set to acquire API security vendor CloudVector after entering into an agreement, with the deal expected to be completed by the end of May.