API Security Articles
The Latest API Security News, Vulnerabilities & Best Practices
APISecurity.io is a community website for all things related to API security. Our daily news and weekly API Security newsletter cover the latest breaches, vulnerabilities, standards, best practices, regulations, and technology.
Our developer-friendly tools help you to assess how secure your APIs really are and to remediate all vulnerabilities at design and runtime.
Subscribe to the API Security newsletter
By clicking Subscribe you agree to our Data Policy
From the APISecurity.io Twitter
;
Sumo Logic urges customers to reset API keys following security breach
Sumo Logic urges customers to reset API keys following security breach | TechCrunch
The US-based cloud data analytics and log analysis company said an attacker used compromised credentials to access a Sumo Logic AWS account
techcrunch.com
Flaws in OAuth’s social sign-in for many popular apps could have put many users at risk
Flaws in OAuth’s social sign-in could have put billions of users at risk
Security researchers advise teams not to allow social sign-ins from accounts such as Facebook and Google, and instead deploy single-sign-on options.
www.scmagazine.com
Thoughts from @thenewstack on five best practices for securing your API gateway
5 Best Practices for Securing Your API Gateway
With modern API gateways, enhancing security often doesn't require extensive overhauls, just a simple configuration change.
thenewstack.io
API Security Newsletter Archive
-
16 November, 23
-
1 November, 23
-
18 October, 23
-
5 October, 23
-
21 September, 23
-
7 September, 23
-
25 August, 23
-
10 August, 23
-
26 July, 23
-
6 July, 23
From the APISecurity.io Twitter
Sumo Logic urges customers to reset API keys following security breach
Sumo Logic urges customers to reset API keys following security breach | TechCrunch
The US-based cloud data analytics and log analysis company said an attacker used compromised credentials to access a Sumo Logic AWS account
techcrunch.com
Flaws in OAuth’s social sign-in for many popular apps could have put many users at risk
Flaws in OAuth’s social sign-in could have put billions of users at risk
Security researchers advise teams not to allow social sign-ins from accounts such as Facebook and Google, and instead deploy single-sign-on options.
www.scmagazine.com
Thoughts from @thenewstack on five best practices for securing your API gateway
5 Best Practices for Securing Your API Gateway
With modern API gateways, enhancing security often doesn't require extensive overhauls, just a simple configuration change.
thenewstack.io
Another guide from @DanaEpp, this time looking at Burp Collaborator
Proving API exploitability with Burp Collaborator
Learn how to prove API exploitability through the use of the Burp Collaborator for out-of-band application security testing (OAST).
danaepp.com
