The API and Application Protection Blog

ThreatX platform updates, threat research on the latest critical CVEs and 0 days impacting APIs and web applications, alongside strategies and tactics for overcoming the challenges of modern security teams.

Threat Intelligence BY Andrew Useckas

ThreatX Response to Spring4Shell

On March 29, 2022, Spring disclosed a zero-day vulnerability – Spring4Shell. A widely used Java framework, Spring is found within many web applications. If exploited, this vulnerability could enable unauthenticated remote code execution (RCE) by attackers. This is considered a priority vulnerability that should be addressed immediately in Java applications that leverage Spring Core. Bottom […]

The API and Application Protection Blog

ThreatX Response to Spring4Shell

ThreatX Response to Spring4Shell

Five Requirements for Protecting APIs Against Attacks

API Protection vs. Security: Getting Started

How Rogue and Zombie APIs Expand Your Attack Surface

Response to Threat of Russian Cyberattacks

New Research: How Does API Security Affect Consumers?

Read the Fine Print: Can’t Block an API Attack? You Can’t Protect

How We Were Able to Help Our Customers With the Log4j 0Day

Account Takeover (ATO): Types, Detection, Prevention and Protection

Digital Hygiene Tip From Our SOC: Update Your Cipher Suites and Certificates

How ThreatX Can Help Address Cyber Insurance Critical Controls

How to Simplify Your API to Narrow Attack Vectors

The API and Application Protection Blog

Subscribe for updates