Could APIs be the undoing of AI?
Application programming interfaces (APIs) are essential to how generative AI (GenAI) functions with agents (e.g., calling upon them for data). But the combination of API and LLM issues coupled with rapid rollouts is likely to see numerous organizatio.....»»
The emergence of trinity attacks on APIs
When it comes to attacks against application programming interfaces (APIs), the building blocks that provide access to many of our applications, the OWASP API Top Ten is seen as definitive – and rightly so. Compiled in 2019 based on a risk analysis.....»»
DirectX 12 vs. DirectX 11: which is best for PC gaming?
DirectX 12 has been around for a few years, but some games still use DirectX 11. We break down differences between the graphics APIs so you know which to use......»»
APIs are placing your enterprise at risk
At a surface level, APIs help businesses to connect applications and share data with one another. This creates an easier, more seamless experience for customers and users. If you have ever used your Google account to log into multiple sites or apps,.....»»
Hundreds of Android apps found leaking API keys, putting users at risk
Threat actors could use leaked APIs to send fraudulent emails to Android users, and exfiltrate mailing lists......»»
Three security design principles for public REST APIs
In this Help Net Security video, Dr. Pedram Hayati, Founder of SecDim, offers a technical write-up based on a secure programming challenge. The task was inspired by a major security breach that happened to a telco in Australia and offers lessons lear.....»»
MetricStream Euphrates enables enterprises to improve their GRC program performance
MetricStream has unveiled its latest product release, focused on accelerating GRC program performance. The purpose-built low-code/no-code platform empowers customers to easily personalize and configure products to their needs. New APIs help connect M.....»»
How Orca Security uses agentless API scanning to identify multicloud risks
Orca Security unveils an agentless API scanning solution that can identify vulnerable APIs and multicloud risks. Orca Security unveils an agentless API scanning solution that can identify vulnerable APIs and multicloud risks.Read More.....»»
Shadow APIs hit with 5 billion malicious requests
Cequence Security released its first half 2022 report titled, “API Protection Report: Shadow APIs and API Abuse Explode.” Chief among the findings was approximately 5 billion (31%) malicious transactions targeted unknown, unmanaged and unprotecte.....»»
APIs are quickly becoming the most popular attack vector
In this Help Net Security video, Shay Levi, CTO at Noname Security, discusses the findings from a recent API security report, which reveals a growing number of API security incidents, a concerning lack of API visibility, and a level of misplaced conf.....»»
API authentication failures demonstrate the need for zero trust
The use of application programming interfaces (APIs) has exploded as businesses deploy mobile apps, containers, serverless computing, microservices, and expand their cloud presence. Consequently, many APIs are developed and deployed very quickly, lea.....»»
Week in review: MS Exchange zero-days exploited, AD attack paths, developing secure APIs
SpyCast: Cross-platform mDNS enumeration tool SpyCast is a cross-platform mDNS enumeration tool that can work either in active mode by recursively querying services or in passive mode by only listening to multicast packets. Attackers use novel techni.....»»
Platform9 Arlon allows developers to deploy and configure a large number of clusters
Platform9 launches its latest open source project, Arlon. Arlon defines a unified architecture that leverages GitOps, declarative APIs, and Kubernetes to manage and reconcile state of both infrastructure (clusters and underlying resources) as well as.....»»
Developers create fun ways to interact with iPhone 14 Pro’s Dynamic Island in their apps
One of the key features of the iPhone 14 Pro and iPhone 14 Pro Max is certainly Dynamic Island – a new interactive area at the top of the screen that replaces the iPhone’s notch. Dynamic Island works with multiple iOS APIs by default. However, s.....»»
Bad bots are coming at APIs! How to beat the API bot attacks?
API or Application Programming Interface is a de facto building block for modern-day applications, necessary for both building and connecting applications and websites. But APIs are poorly protected and have become one of the prime targets for attack.....»»
APIs and zero trust named as top priorities for CISOs in 2023
Staying competitive with cyberattackers and more adept at real-time attacks is the challenge every CISO will face in 2023 and beyond. Staying competitive with cyberattackers and more adept at real-time attacks is the challenge every CISO will fac.....»»
Assembly AI offers AI-as-a-service API to ease model development
Offered as an AI-as-a-service model, Assembly AI's latest APIs can perform various tasks ranging from summarization and content moderation to topic detection. Offered as an AI-as-a-service model, Assembly AI's latest APIs can perform various task.....»»
ArmorCode integrates with Traceable AI to improve application security posture for organizations
ArmorCode has integrated with Traceable AI, which will bring its data into the ArmorCode platform and improve Application Security Posture from code to cloud. To move at the speed of business, modern applications are powered by APIs to deliver functi.....»»
Checkmarx API Security identifies shadow and zombie APIs during software development
In Las Vegas, at Black Hat USA 2022, Checkmarx has released Checkmarx API Security, the “shift-left” API security solution. Building on the launch of Checkmarx Fusion, which prioritizes and correlates vulnerability data from across differ.....»»
Businesses lack visibility into run-time threats against mobile apps and APIs
A new report from Osterman Research codifies the increasing dependence of businesses upon their mobile apps, and reveals a jarring disconnect between the strategic importance of apps versus the level of focus and resources applied to protect organiza.....»»
Traceable AI adds eBPF to its security platform to improve observability and visibility into all API activity
Traceable AI adds extended Berkeley Packet Filter (eBPF) data to its platform. Traceable helps CISOs, DevSecOps, and DevOps teams obtain deeper observability and visibility into APIs without additional instrumentation or latency — advancing compani.....»»