API security

March 30, 2023

FireTail’s Guide to Maximizing Your Experience at RSA Conference 2023

RSA is all about building bridges and connections.



March 28, 2023

FireTail CEO, Jeremy Snyder, Set to Present at UK Cyber Week 2023

Meet up with the FireTail team at stand D20 in the exhibitor area at Uk Cyber Week!



March 23, 2023

Maximizing the Power of API Microservices Architecture: Best Practices and Key Considerations

API microservices architecture is a game-changing approach that can help businesses improve their systems and processes.



March 15, 2023

Ask a CISO Podcast: Exploring the Challenges of Application Security

In this episode of the Ask a CISO podcast, we talk about application security with guest Tanya Janca.



March 14, 2023

Join FireTail virtually at API Secure 2023!

Join FireTail virtually at API Secure 2023! Jeremy Snyder will share learnings from a decade of API data breaches, and discuss why FireTail takes a unique approach to API security



March 10, 2023

FireTail's Paul MG will speak about the OWASP API Top 10 at Scale 20x

FireTail's Paul MG will speak about the OWASP API Top 10 at Scale 20x.



February 28, 2023

API Security Breaches: Areas of High Concern

As attackers become more knowledgeable about different APIs, they can exploit these weaknesses to gain access to sensitive information or execute malicious code on vulnerable systems.



February 22, 2023

API Security Monitoring in 2023: An Essential Guide for organizations

API Security Management is a critical aspect of application security and data security.



February 16, 2023

Exploring the Pros and Cons of Web Application Firewalls (WAFs)

Over the last few years, web application attacks have become one of the leading causes of data breaches, making web application security increasingly important for overall security posture.



January 4, 2023

A bumpy ride into API insecurity

Following on to previously reported connected car API problems, the worst disclosure to date has been published.



December 30, 2022

Why You Should Take API Security Sirius-ly

SiriusXM, like Hyundai, designed and deployed weak APIs into the wild.



December 1, 2022

My Car Won't Start (Because Someone Hacked my API)

According to FireTail’s First Law of API Security: If an API can be hacked and compromised, it will be. And indeed, security researchers found a vulnerability in myHyundai’s API that allowed a potential attacker to access functions that the app would allow, including starting the car, turning the lights on and off, locking the car and more.



November 7, 2022

The Absolute Beginner's Guide to API Security

Let’s talk about the pervasiveness of APIs by discussing a real-life scenario most of us can relate to: hailing a trip on a rideshare app.So first, you open up the app using your phone and request a ride to your location. That sends a request from your phone[...]



September 28, 2022

Major Telecom API Hack

This is a worst-case scenario for a breach of API security. Leaving an API endpoint online that does not require authentication is just asking for trouble, no matter how innocuous it may seem, as this provides an easy opening for hackers.



September 28, 2022

DevOps Institute SkilUp Presentation: Embedding API Security by Design into DevOps Pipelines



September 2, 2022

API with a Cache

Researchers have proven that data stored in a browser's cache can be accessed.



August 26, 2022

Smart Tub Mine Machine

Flaws in a smart hot tub's API expose data



August 8, 2022

Turning Leftover API Credentials into Twitter Bot Armies

Apps with leftover API credentials can be exploited by bad actors to create a bot army.



July 18, 2022

Reflecting on APIs in the time of COVID

While the COVID pandemic is far from over, the era of the COVID exposure app may be. With Canada sunsetting its COVID alert app, it’s a good time to reflect on how in this case the API gave birth to the app instead of vice versa.

