Tag: api

GitHub expands security tools after 39 million secrets leaked in 2024

Apr 2, 2025 8:56 PM

by

Andy Stern

in SecurityNews

Tags: api, credentials, data-breach, github, tool

Over 39 million secrets like API keys and account credentials were leaked on GitHub throughout 2024, exposing organizations and users to significant security risks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/github-expands-security-tools-after-39-million-secrets-leaked-in-2024/
Stripe API Skimming Campaign Unveils New Techniques for Theft

Apr 2, 2025 6:55 PM

by

Andy Stern

in SecurityNews

Tags: api, attack, malicious, theft

A novel skimming attack has been observed by Jscramber, using the Stripe API to steal payment information by injecting malicious scripts into pages First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/stripe-api-skimming-campaign-new/
Unitree Go1: Gefährliche Backdoor in populärem Roboterhund entdeckt

Apr 2, 2025 12:55 PM

by

Andy Stern

in SecurityNews

Tags: api, backdoor, china, risk

Ein Roboterhund aus China konnte mit einem bestimmten API-Key aus der Ferne gesteuert werden – mit erheblichen Risiken für Personen in der Nähe. First seen on golem.de Jump to article: www.golem.de/news/unitree-go1-gefaehrliche-backdoor-in-populaerem-roboterhund-entdeckt-2504-194933.html
Malicious actors increasingly put privileged identity access to work across attack chains

Apr 2, 2025 12:55 PM

by

Andy Stern

in SecurityNews

Tags: access, ai, api, apt, attack, authentication, best-practice, breach, cisa, cisco, cloud, corporate, credentials, cybercrime, cyberespionage, data, detection, email, endpoint, exploit, framework, group, healthcare, identity, infrastructure, login, malicious, malware, mfa, microsoft, network, open-source, password, phishing, phone, ransomware, service, social-engineering, strategy, threat, tool, vpn, windows

Lateral movement: Leveraging privileged access to act in plain sight: Once situated on the corporate network, compromised credentials also allow attackers to expand access to other internal systems with a reduced likelihood of being discovered or triggering malware detection.According to Talos, nearly half of investigated identity attacks targeted Active Directory, with another 20% targeting cloud…
10 best practices for vulnerability management according to CISOs

Apr 2, 2025 8:56 AM

by

Andy Stern

in SecurityNews

Tags: api, attack, automation, best-practice, business, ceo, cio, ciso, control, cybersecurity, data, detection, framework, group, incident response, metric, mitre, penetration-testing, programming, ransomware, risk, risk-management, service, software, strategy, technology, threat, tool, update, vulnerability, vulnerability-management

1. Culture Achieving a successful vulnerability management program starts with establishing a cybersecurity-minded culture across the organization. Many CISOs admitted to facing historical cultural problems, with one summing it up well. “Our cybersecurity culture was pretty laissez-faire until we got hit with Log4J and then a ransomware attack,” he told CSO. “These events were an…
New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth

Apr 2, 2025 8:56 AM

by

Andy Stern

in SecurityNews

Tags: api, cybersecurity, detection, github, malware

Cybersecurity researchers have discovered an updated version of a malware loader called Hijack Loader that implements new features to evade detection and establish persistence on compromised systems.”Hijack Loader released a new module that implements call stack spoofing to hide the origin of function calls (e.g., API and system calls),” Zscaler ThreatLabz researcher Muhammed Irfan V…
Wiz’s Security GraphDB vs. DeepTempo’s LogLM

Apr 2, 2025 12:55 AM

by

Andy Stern

in SecurityNews

Tags: access, ai, api, attack, automation, best-practice, breach, business, cisa, cloud, container, credentials, cve, cybersecurity, data, data-breach, defense, detection, exploit, flaw, framework, guide, iam, identity, infrastructure, intelligence, Internet, jobs, kev, leak, LLM, login, malicious, mitre, ml, network, phishing, risk, social-engineering, strategy, technology, threat, tool, update, vulnerability, vulnerability-management, zero-day

How can a friendly Eye of Sauron help the Wizards? Cloud security is evolving beyond silos. Wiz’s meteoric rise has been powered by a fresh approach: an agentless, graph-based view of risk context across the cloud stack that supplanted a number of point solutions and created the Cloud-Native Application Protection Platform category (CNAPP). If you want…
The urgent reality of machine identity security in 2025

Apr 1, 2025 9:55 PM

by

Andy Stern

in SecurityNews

Tags: access, ai, api, automation, breach, business, cloud, compliance, computing, credentials, crypto, cyber, encryption, exploit, identity, intelligence, resilience, risk, threat, unauthorized, vulnerability

The growth of machine identities and the associated risks Machine identities are experiencing exponential growth, with 79% of organizations predicting increases over the next year and 16% of those expecting radical growth of 50 to 150%. Cloud-native technologies, microservices, and artificial intelligence (AI) drive this surge because they’re environments where identities are created and discarded…
How CISOs can use identity to advance zero trust

Apr 1, 2025 9:55 PM

by

Andy Stern

in SecurityNews

Tags: access, api, attack, authentication, automation, business, ciso, compliance, control, credentials, cyberattack, cybersecurity, data, governance, iam, identity, malware, organized, resilience, risk, risk-assessment, strategy, tactics, threat, unauthorized, vulnerability, zero-trust

Identity: The decision point Perimeter-based security models built to keep attackers out won’t work when 60% of breaches now involve valid credentials. As my colleague Andy Thompson says, “It’s much easier to log in than hack in.”Every entity (human or non-human) accessing a resource (applications, data or other entities) requires an identity. That’s why identities are so…
Salt Security: Focused on Solving Real Business Problems

Apr 1, 2025 9:55 PM

by

Andy Stern

in SecurityNews

Tags: api, attack, best-practice, breach, business, compliance, data, data-breach, detection, exploit, finance, GDPR, governance, government, HIPAA, incident response, infrastructure, mitigation, monitoring, PCI, privacy, programming, risk, service, soc, strategy, threat, tool, unauthorized, vulnerability

In today’s digital landscape, APIs (Application Programming Interfaces) have become integral to business operations, enabling seamless integration and innovation. However, this increased reliance on APIs has also introduced significant security challenges. Salt Security offers a comprehensive solution to these challenges, providing organizations with the tools they need to protect their digital assets effectively. This blog…
Unsolved Challenge: Why API Access Control Vulnerabilities Remain a Major Security Risk

Apr 1, 2025 1:19 AM

by

Andy Stern

in SecurityNews

Tags: access, api, authentication, control, risk, tool, vulnerability

Despite advancements in API security, access control vulnerabilities, such as broken object-level authentication (BOLA) and broken function-level authentication (BFLA), remain almost impossible to detect. This blog will explore why these vulnerabilities are so difficult to detect, the limitations of current security tools, and the implications for businesses relying on API-driven applications. It will also discuss…
Unsolved Challenge: Why API Access Control Vulnerabilities Remain a Major Security Risk

Apr 1, 2025 12:19 AM

by

Andy Stern

in SecurityNews

Tags: access, api, authentication, control, risk, tool, vulnerability

Despite advancements in API security, access control vulnerabilities, such as broken object-level authentication (BOLA) and broken function-level authentication (BFLA), remain almost impossible to detect. This blog will explore why these vulnerabilities are so difficult to detect, the limitations of current security tools, and the implications for businesses relying on API-driven applications. It will also discuss…
Unsolved Challenge: Why API Access Control Vulnerabilities Remain a Major Security Risk

Mar 31, 2025 11:19 PM

by

Andy Stern

in SecurityNews

Tags: access, api, authentication, control, risk, tool, vulnerability

Despite advancements in API security, access control vulnerabilities, such as broken object-level authentication (BOLA) and broken function-level authentication (BFLA), remain almost impossible to detect. This blog will explore why these vulnerabilities are so difficult to detect, the limitations of current security tools, and the implications for businesses relying on API-driven applications. It will also discuss…
Unsolved Challenge: Why API Access Control Vulnerabilities Remain a Major Security Risk

Mar 31, 2025 10:19 PM

by

Andy Stern

in SecurityNews

Tags: access, api, authentication, control, risk, tool, vulnerability

Despite advancements in API security, access control vulnerabilities, such as broken object-level authentication (BOLA) and broken function-level authentication (BFLA), remain almost impossible to detect. This blog will explore why these vulnerabilities are so difficult to detect, the limitations of current security tools, and the implications for businesses relying on API-driven applications. It will also discuss…
Unsolved Challenge: Why API Access Control Vulnerabilities Remain a Major Security Risk

Mar 31, 2025 9:19 PM

by

Andy Stern

in SecurityNews

Tags: access, api, authentication, control, risk, tool, vulnerability

Despite advancements in API security, access control vulnerabilities, such as broken object-level authentication (BOLA) and broken function-level authentication (BFLA), remain almost impossible to detect. This blog will explore why these vulnerabilities are so difficult to detect, the limitations of current security tools, and the implications for businesses relying on API-driven applications. It will also discuss…
Unsolved Challenge: Why API Access Control Vulnerabilities Remain a Major Security Risk

Mar 31, 2025 8:19 PM

by

Andy Stern

in SecurityNews

Tags: access, api, authentication, control, risk, tool, vulnerability

Despite advancements in API security, access control vulnerabilities, such as broken object-level authentication (BOLA) and broken function-level authentication (BFLA), remain almost impossible to detect. This blog will explore why these vulnerabilities are so difficult to detect, the limitations of current security tools, and the implications for businesses relying on API-driven applications. It will also discuss…
API testing firm APIsec exposed customer data during security lapse

Mar 31, 2025 7:19 PM

by

Andy Stern

in SecurityNews

Tags: api, data, data-breach, Internet

tion>
Unsolved Challenge: Why API Access Control Vulnerabilities Remain a Major Security Risk

Mar 31, 2025 7:19 PM

by

Andy Stern

in SecurityNews

Tags: access, api, authentication, control, risk, tool, vulnerability

Despite advancements in API security, access control vulnerabilities, such as broken object-level authentication (BOLA) and broken function-level authentication (BFLA), remain almost impossible to detect. This blog will explore why these vulnerabilities are so difficult to detect, the limitations of current security tools, and the implications for businesses relying on API-driven applications. It will also discuss…
Unsolved Challenge: Why API Access Control Vulnerabilities Remain a Major Security Risk

Mar 31, 2025 6:20 PM

by

Andy Stern

in SecurityNews

Tags: access, api, authentication, control, risk, tool, vulnerability

Despite advancements in API security, access control vulnerabilities, such as broken object-level authentication (BOLA) and broken function-level authentication (BFLA), remain almost impossible to detect. This blog will explore why these vulnerabilities are so difficult to detect, the limitations of current security tools, and the implications for businesses relying on API-driven applications. It will also discuss…
Unsolved Challenge: Why API Access Control Vulnerabilities Remain a Major Security Risk

Mar 31, 2025 4:21 PM

by

Andy Stern

in SecurityNews

Tags: access, api, authentication, control, risk, tool, vulnerability

Despite advancements in API security, access control vulnerabilities, such as broken object-level authentication (BOLA) and broken function-level authentication (BFLA), remain almost impossible to detect. This blog will explore why these vulnerabilities are so difficult to detect, the limitations of current security tools, and the implications for businesses relying on API-driven applications. It will also discuss…
Unsolved Challenge: Why API Access Control Vulnerabilities Remain a Major Security Risk

Mar 31, 2025 4:13 PM

by

Andy Stern

in SecurityNews

Tags: access, api, authentication, control, risk, tool, vulnerability

Despite advancements in API security, access control vulnerabilities, such as broken object-level authentication (BOLA) and broken function-level authentication (BFLA), remain almost impossible to detect. This blog will explore why these vulnerabilities are so difficult to detect, the limitations of current security tools, and the implications for businesses relying on API-driven applications. It will also discuss…
New Python-Based Discord RAT Targets Users to Steal Login Credentials

Mar 29, 2025 5:13 AM

by

Andy Stern

in SecurityNews

Tags: access, api, control, credentials, cyber, cybersecurity, exploit, login, malware, rat

A recently identified Remote Access Trojan (RAT) has raised alarms within the cybersecurity community due to its innovative use of Discord’s API as a Command and Control (C2) server. This Python-based malware exploits Discord’s extensive user base to execute commands, steal sensitive information, and manipulate both local machines and Discord servers. Bot Initialization and Functionality…
Nine-Year-Old npm Packages Hijacked to Exfiltrate API Keys via Obfuscated Scripts

Mar 29, 2025 5:13 AM

by

Andy Stern

in SecurityNews

Tags: api, blockchain, crypto, cybersecurity

Cybersecurity researchers have discovered several cryptocurrency packages on the npm registry that have been hijacked to siphon sensitive information such as environment variables from compromised systems.”Some of these packages have lived on npmjs.com for over 9 years, and provide legitimate functionality to blockchain developers,” Sonatype researcher Ax Sharma said. “However, […] the latest First seen…
PCI DSS 4.0 Compliance Requires a New Approach to API Security

Mar 27, 2025 9:37 PM

by

Andy Stern

in SecurityNews

Tags: api, compliance, data, exploit, finance, malicious, PCI, service, threat

Retailers, Financial Services, and the API Security Wake-Up Call With the PCI DSS 4.0 compliance deadline fast approaching, Cequence threat researchers have uncovered troubling data: 66.5% of malicious traffic is targeting retailers. And attackers aren’t just after payment data. They’re weaponizing APIs to exploit every stage of the digital buying process. The conclusions in this……
CVE-2025-29927: Next.js Middleware Authorization Bypass Flaw

Mar 27, 2025 7:34 PM

by

Andy Stern

in SecurityNews

Tags: access, api, attack, control, cve, cvss, data, exploit, flaw, malicious, risk, router, theft, unauthorized, update, vulnerability

IntroductionOn March 21, 2025, a critical vulnerability, CVE-2025-29927, was publicly disclosed with a CVSS score of 9.1, signifying high severity. Discovered by security researcher Rachid Allam, the flaw enables attackers to bypass authorization checks in Next.js Middleware, potentially granting unauthorized access to protected resources. This poses a risk to applications that rely on Middleware to…
Reality Bites: You’re Only as Secure as Your Last API Deployment

Mar 27, 2025 1:34 PM

by

Andy Stern

in SecurityNews

Tags: access, api, application-security, attack, authentication, best-practice, breach, business, compliance, control, data, data-breach, endpoint, exploit, finance, fintech, flaw, framework, governance, guide, healthcare, mobile, monitoring, risk, service, startup, strategy, threat, tool, unauthorized, update, vulnerability

In agile and DevOps-driven environments, APIs are frequently updated to meet evolving business demands, from adding new features to addressing performance issues. However, each deployment introduces potential security risks, as new code, configurations, and endpoints can expose vulnerabilities. In an environment of continuous integration and continuous deployment (CI/CD), the security of an organization’s APIs hinges…
CoffeeLoader: A Brew of Stealthy Techniques

Mar 26, 2025 10:34 PM

by

Andy Stern

in SecurityNews

Tags: access, antivirus, api, attack, backup, cloud, communications, computer, control, data, detection, edr, encryption, endpoint, group, Hardware, iphone, malware, mobile, network, open-source, RedTeam, software, threat, tool, vulnerability, windows

IntroductionZscaler ThreatLabz has identified a new sophisticated malware family that we named CoffeeLoader, which originated around September 2024. The purpose of the malware is to download and execute second-stage payloads while evading detection by endpoint-based security products. The malware uses numerous techniques to bypass security solutions, including a specialized packer that utilizes the GPU, call…
Securing Canada’s Digital Backbone: Navigating API Compliance

Mar 26, 2025 8:35 PM

by

Andy Stern

in SecurityNews

Tags: api, attack, authentication, best-practice, breach, compliance, cyber, data, detection, encryption, flaw, framework, governance, government, infrastructure, monitoring, regulation, risk, service, strategy, threat, vulnerability

Highlights: Understanding Canadian API Standards: Key principles for secure government API development. Critical Importance of API Security: Why robust protection is vital for citizen data. Compliance and Trust: How adherence to standards builds public confidence. Key Security Considerations: Essential practices for Canadian organizations. Salt Security’s Alignment: How the Salt API Security Platform supports Canadian government…
Understanding RDAP: The Future of Domain Registration Data Access

Mar 26, 2025 6:13 AM

by

Andy Stern

in SecurityNews

Tags: access, api, attack, authentication, china, compliance, control, cyber, cybercrime, cybersecurity, data, detection, exploit, framework, fraud, GDPR, incident response, infrastructure, intelligence, Internet, law, malicious, malware, phishing, privacy, regulation, service, threat, tool, vulnerability
The Unseen Battle: How Bots and Automation Threaten the Web

Mar 25, 2025 6:13 PM

by

Andy Stern

in SecurityNews

Tags: api, automation, control

New research from F5 Labs examined over 200 billion web and API traffic requests from businesses with bot controls in place. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/03/the-unseen-battle-how-bots-and-automation-threaten-the-web/