The Web Application and API Protection Blog

Blog BY Dave Howell

Read the Fine Print: Can’t Block an API Attack? You Can’t Protect

“Can the API security tool you are pitching – on its own – stop (block) API attacks...

Application Security BY Tom Hickman

How We Were Able to Help Our Customers With the Log4j 0Day

Many security teams are still working overtime to patch and protect against any log4j-related...

Application Security BY Bret Settle

Account Takeover (ATO): Types, Detection, Prevention and Protection

In the previous installment of our blog series on the modern threat landscape, we looked at how...

Application Security BY Neil Weitzel

Digital Hygiene Tip From Our SOC: Update Your Cipher Suites and Certificates

It’s January, and most of us are hitting the gym, eating salads, and resolving to take better...

Application Security BY Billy Toomey

How ThreatX Can Help Address Cyber Insurance Critical Controls

Our customers often ask us for help addressing the requirements of insurers. It’s clear that...

Application Security BY Sam Placette

How to Simplify Your API to Narrow Attack Vectors

More Simple = Less API Attack Vectors The bottom line is that every feature of your API is a...

API Security BY Suzanne Ciccone

Did You Read Our Most Popular 2021 Blog Posts?

2021 was a big year for ThreatX. Not to brag, but we more than doubled our employees and customers,...

Blog BY Bret Settle

API Gateway Security – What kind of security do API gateways offer?

APIs are critical building blocks of modern applications and also represent one of the...

Application Security BY Andrew Useckas

Log4j2: What We’ve Seen, What We Expect

We’re about a week and a half into the release of the Log4j2 vulnerability,...

Application Security BY Neil Weitzel

Tips From the ThreatX SOC: Managing the Log4j Vulnerability

The Log4j vulnerability has created a lot of chaos for security professionals. While there is no...

Blog BY ThreatX Labs

Log4j Update: Threat to Local Hosts – ThreatX Response

Researchers have discovered a new attack vector that may allow an attacker to trigger the Log4j...

The API and Application Protection Blog

Read the Fine Print: Can’t Block an API Attack? You Can’t Protect

Read the Fine Print: Can’t Block an API Attack? You Can’t Protect

How We Were Able to Help Our Customers With the Log4j 0Day

Account Takeover (ATO): Types, Detection, Prevention and Protection

Digital Hygiene Tip From Our SOC: Update Your Cipher Suites and Certificates

How ThreatX Can Help Address Cyber Insurance Critical Controls

How to Simplify Your API to Narrow Attack Vectors

Did You Read Our Most Popular 2021 Blog Posts?

API Gateway Security – What kind of security do API gateways offer?

Log4j2: What We’ve Seen, What We Expect

Tips From the ThreatX SOC: Managing the Log4j Vulnerability

Log4j Update: Threat to Local Hosts – ThreatX Response

Detecting and Blocking Log4j2: ThreatX Retro

The API and Application Protection Blog

Subscribe for updates