The API Protection Blog

ThreatX platform updates, threat research on the latest critical CVEs and 0 days impacting APIs and web applications, alongside strategies and tactics for overcoming the challenges of modern security teams.

Subscribe for API Protection Tactics, Strategy, and Threat Research

Blog
Application Security
Threat Intelligence
News
Product Updates
People & Culture
Vulnerabilities
Cloud Security
API Security

Vulnerabilities BY Bret Settle

Excessive Data Exposure: What It Is, How We Can Help

No. 3 on the OWASP API Top 10 vulnerabilities list is excessive data exposure (after BOLA and broken user authentication). OWASP says of this vulnerability, “Looking forward to generic implementations, developers tend to expose all object properties without considering their individual sensitivity, relying on clients to perform the data filtering before displaying it to the […]

Vulnerabilities BY Bret Settle

Subscribe for API Protection Tactics, Strategy, and Threat Research

The API Protection Blog

Excessive Data Exposure: What It Is, How We Can Help

Excessive Data Exposure: What It Is, How We Can Help

Broken User Authentication: What It Is, How We Can Help

How to Use API Schema to Improve API Protection

Broken Object Level Authorization (BOLA): What It Is, How ThreatX Can Help

How to Simplify Your API to Narrow Attack Vectors

Credential Stuffing Examples and Keys to Detection

Discovering and Protecting GraphQL APIs

Smarter Not Harder: 3 Ways API Analytics Can Help Application Owners

Gene Fay Gives Keynote at 2022 Networking Technology Program Graduation

How to Secure APIs – 10 Best Practices to Follow

Open Banking Forcing Prioritization of API Protection

How Not to Protect APIs From Attack

Why the Long View Matters in API Attack Protection

Addressing the Atlassian Confluence Vulnerability