owasp-api-top10

  BOLA stands for Broken Object Level Authorization (BOLA), the top API security issue of the OWASP API Security Top 10. Some say it is similar in spirit to [...]

As organizations embrace digital transformation initiatives, they are increasingly consuming and exposing APIs that increase their risk surface. The OWASP API Security [...]

Amazon Ring APIs suffer from Excessive Data Exposure Amazon’s Ring, the home-security unit, was recently found to expose Personally Identifiable Information (PII) data [...]

OWASP API Security Top 10 – Broken Function Level Authorization Broken Function Level Authorization is the 5th API Security issue in the list of OWASP API Top 10 [...]

OWASP API Security Top 10 series, this week we go through number 4 in the OWASP API top 10 list: Lack of Resources & Rate [...]

OWASP API Security Top 10 – Excessive Data Exposure This week we look at the third item in the list of OWASP API security top [...]

API Security Checklist: Cheatsheet Over the last few weeks we presented a series of blogs outlining 15 best practices for strengthening API security at [...]

OWASP API Security Top 10 – Broken Authentication Let us dive into the second item in the OWASP API Top 10 list: Broken Authentication. In [...]

API Security Checklist: Part 3 This is the final blog in the series outlining 15 best practices for strengthening API security with a shift-left [...]

APIs – Underpinning Modern Technologies to Popular Data Breaches In today’s world software is an essential piece driving digital transformation and also business [...]