How CISOs Can Influence API Security Change
Security incidents can cost a chief information security officer (CISO) their job. For example, cybersecurity breaches at Capital One, Uber, Equifax and plenty of others have led to the firing or forced resignation of the companies’ respective CISOs. Whether all these removals were fair is up for debate, but regardless, ...
Read More
API Attacks Rise 400% in Last Six Months
Attacks on APIs continue to rise sharply. New findings from Salt Labs found a shocking 400% increase in unique API attackers in the last six months. Interestingly, the report also discovered that nearly 80% of attacks occur over authenticated endpoints. Gartner previously predicted that APIs would soon become the most ...
Read More
Top 10 Open Source Software Risks of 2023
Software supply chain issues continue to be a concerning subject of late. Open source software (OSS) has many benefits, yet relying on many open source dependencies could cause security woes if it isn’t managed correctly. This problem has come into focus as more vulnerabilities present themselves and attacks on open ...
Read More
More API Inventory Auditing Necessary to Limit Incidents
The API industry is booming. Development of application programming interfaces has outpaced many areas of IT as APIs become the lifeblood of modern composable enterprises and digital transformation. Yet, as this surface area increases, so do potential threats — recent studies found that most companies experienced an API security incident ...
Read More
5 Techniques to Protect Open Source Software
Open source software brings many benefits to the modern business environment. And, in terms of security, the more developers involved in open source software, the better—arguably, there’s a better overall security foundation if there are more eyes to spot flaws. As such, software supply chain issues and vulnerabilities around popular ...
Read More
The Top 7 Most Common Web Vulnerabilities
Invicti has published the Spring 2022 Edition of The Invicti AppSec Indicator, a comprehensive study that ranks the most common web vulnerabilities. To conduct their research, Invicti analyzed 939 customers across the globe for flaws, discovering 282,914 direct-impact vulnerabilities. In the process, over 23 billion individual security checks were performed ...
Read More
All Sectors Should Expect A Holiday Cyberattack Surprise
Retail is known to experience a spike in cybercrime around the holidays. With millions of shoppers conducting business online, the threat landscape usually increases with this jolt in traffic. However, this year, it's not only Retail that should be concerned — research by CORO finds that all mid-market businesses are ...
Read More
Remote Workforce Cybersecurity Concerns Hit New High
Results of the 2021 Unisys Security Index are in, and they pointed to a high level of concern about rising cybercrime. The survey revealed that 62% of global respondents are seriously concerned about identity fraud, up 5% from 2020. Also, 60% are concerned about bank card fraud, up 4% from ...
Read More
Secure Design Is Still Not The Norm
Though general security awareness is at an all-time high, secure design is still not the norm in most organizations. In fact, new research finds that the majority of organizations admit they do not meet all the necessary security reviews before code reaches production environments. A recent Invicti study on application ...
Read More
If Shift Left Is Dissolving, How Should Security React?
For years, the idea of “shift left” has been a guiding principle for application security testing. The philosophy aims to discover bugs early in the development process by automating code analysis within development and staging environments. However, shift left is only one aspect of security testing—maintaining stable platforms requires a ...
Read More
