API Security Articles

The Latest API Security News, Vulnerabilities & Best Practices

APISecurity.io is a community website for all things related to API security. Our daily news and weekly API Security newsletter cover the latest breaches, vulnerabilities, standards, best practices, regulations, and technology.

API Security Encyclopedia provides details on possible security issues in API contracts and how to remediate them, and our tools help you evaluate how secure the APIs you are working on actually are.

Subscribe to the API Security newsletter

By clicking Subscribe you agree to our Data Policy

From the APISecurity.io Twitter

MakerBot's Thingiverse 3D printing repository website breach potentially leads to the leak of up to 2 million users' details, including in some cases OAuth tokens for remote access to printers.

https://www.databreachtoday.com/thingiverse-breach-50000-printers-could-have-been-hijacked-a-17749

API attacks and breaches are piling up according to recent coverage. According to Akamai API communications now account for more than 83% of all internet traffic.

https://www.datacenterknowledge.com/security/api-attacks-breaches-piling

Join @isamauny and @balaganski from @kuppingercole this Thursday when they discuss "Why Continuous API Security Is Key to Protecting Your Digital Business"

https://www.kuppingercole.com/events/2021/10/api-security-digital-business?ref=w1021

Fast Healthcare Interoperability and Resources APIs are vulnerable to abuse by compromised apps and automated scripts courtesy of @alissaknight in a new report.

https://www.scmagazine.com/analysis/application-security/critical-flaws-found-in-interoperability-backbone-fhir-apis-vulnerable-to-abuse

API Security weekly newsletter issue #155 is out. Main stories include @AlanMonie on the BrewDog vulnerability, @ciscoemerge and @vijoy announcing APIClarity at #kubecon2021, @f5 report into breaches in financial services, and an API security mega-guide.

https://apisecurity.io/issue-155-vulnerability-brewdog-mobile-app-apiclarity-kubecon-api-attacks-open-banking/

From the APISecurity.io Twitter

MakerBot's Thingiverse 3D printing repository website breach potentially leads to the leak of up to 2 million users' details, including in some cases OAuth tokens for remote access to printers.

https://www.databreachtoday.com/thingiverse-breach-50000-printers-could-have-been-hijacked-a-17749

API attacks and breaches are piling up according to recent coverage. According to Akamai API communications now account for more than 83% of all internet traffic.

https://www.datacenterknowledge.com/security/api-attacks-breaches-piling

Join @isamauny and @balaganski from @kuppingercole this Thursday when they discuss "Why Continuous API Security Is Key to Protecting Your Digital Business"

https://www.kuppingercole.com/events/2021/10/api-security-digital-business?ref=w1021

Fast Healthcare Interoperability and Resources APIs are vulnerable to abuse by compromised apps and automated scripts courtesy of @alissaknight in a new report.

https://www.scmagazine.com/analysis/application-security/critical-flaws-found-in-interoperability-backbone-fhir-apis-vulnerable-to-abuse

API Security weekly newsletter issue #155 is out. Main stories include @AlanMonie on the BrewDog vulnerability, @ciscoemerge and @vijoy announcing APIClarity at #kubecon2021, @f5 report into breaches in financial services, and an API security mega-guide.

https://apisecurity.io/issue-155-vulnerability-brewdog-mobile-app-apiclarity-kubecon-api-attacks-open-banking/