api-breach

  BOLA stands for Broken Object Level Authorization (BOLA), the top API security issue of the OWASP API Security Top 10. Some say it is similar in spirit to [...]

Amazon Ring APIs suffer from Excessive Data Exposure Amazon’s Ring, the home-security unit, was recently found to expose Personally Identifiable Information (PII) data [...]

API Object Vulnerability In Facebook Pages Allowed Creation of Ghost FB Posts A critical Broken Object Level Authorization vulnerability in Facebook Pages was revealed [...]

API Vulnerabilities at the Center of SolarWinds SUPERNOVA Malware Learn more about SUPERNOVA Malware and how CloudVector can protect against the APIs exploited by the [...]

API Data Breaches in 2020 As we near the end of Year 2020, it is time for us to look back and review some of the major API-related data breaches and/or data leakage [...]

2020 Hindsight and 2021 Foresight – Lessons Learned and Predictions for the Velocity of Business They say that hindsight is 2020, which has certainly been the case [...]

Starbucks Internal API Proxy Bypass Exploit What is it? Find out how to detect and protect against future exploits like [...]

How a Trusted Client Hides API Vulnerability? A Case for Service Side Monitoring/Testing A critical vulnerability in Apple “Sign Me In” feature was reported last [...]

Data Leaks When API Services Miscommunicate How Monitoring All Call Traces Can Detect and Prevent Data Exfiltration Findadoctor.com Data Leakage It was reported that [...]

Digging Deep to Defend Against Docker API Abuse Another day, another API breach adds to the growing chorus against API vulnerabilities. The attack we speak [...]