#APIsec

@wallarm.bsky.social

1 month ago

Adversarial AI is already influencing how attacks work.

AI systems learn from data.

Attackers learn how to poison, probe, and evade that learning.

Learn why this creates a new attack surface, and what to do about it 👇
www.reversinglabs.com/blog/adversa...

#APIsec #AISecurity #Cybersecurity

0 0 0 0

Wallarm API Security

@wallarm.bsky.social

1 month ago

In healthcare, API security isn’t tested in theory, but in audits, platform changes, and live clinical workflows.

This case study shows how a healthcare tech team secured PHI during an AWS migration without adding friction or compliance risk. 👇
www.wallarm.com/resources/pr...

#APIsec #Wallarm

0 0 0 0

Wallarm API Security

@wallarm.bsky.social

3 months ago

Manufacturer Defends Against API Attacks with Wallarm API Security Faced with increasing API security challenges, including an API security incident and insufficient static code analysis, this manufacturer sought a robust solution to protect its APIs.

Manufacturers depend on reliable APIs to keep production and internal systems running. When an API breach hit a global manufacturer, it exposed how quickly gaps can spread.

Here’s how they addressed the issues and strengthened their API security: www.wallarm.com/resources/ma...

#APIsec #Wallarm

0 0 0 0

Wallarm API Security

@wallarm.bsky.social

6 months ago

A Fortune 500 manufacturer faced gaps in API security after an incident and ineffective tools.

See the full case study:
📖www.wallarm.com/resources/manufacturer-d...

#CyberSecurity #APIsec #Wallarm

0 0 0 0

Wallarm API Security

@wallarm.bsky.social

6 months ago

AI-first infrastructure introduces AI-first risks.

From tool misuse to rogue MCP servers, Multi-Agentic Systems demand new defenses.

Wallarm’s MCP Security Checklist, aligned with OWASP guidance, helps secure AI-native environments.

🔗 lab.wallarm.com/comprehensiv...

#APIsec #AIsec #Wallarm

0 0 0 0

Wallarm API Security

@wallarm.bsky.social

6 months ago

A leader in mobility tech chose Wallarm to protect its shared IT infrastructure and API-driven tools.

✅ Real-time API discovery
✅ Scalable protection for Kubernetes
✅ Cost-effective visibility into global threats

Full case study: www.wallarm.com/resources/mo...

#APISec #Wallarm #CyberSecurity

0 0 0 0

Wallarm API Security

@wallarm.bsky.social

7 months ago

⏳ In a few days, the past comes alive.

Wallarm’s Cyber Security Museum opens at #BlackHat2025

Come for the artifacts. Stay for the future of API protection.

📍 Booth #4830

🎟️ Reserve your walkthrough →https://www.wallarm.com/wallarm-black-hat-2025

#Cybersecurity #APISec #BlackHat

0 0 0 0

Wallarm API Security

@wallarm.bsky.social

8 months ago

CISA’s BOD 25-01 demands secure configs, monitoring, and remediation across federal clouds.

APIs aren’t named, but they’re the biggest blind spot.

Wallarm helps agencies discover, monitor, and protect shadow APIs before they’re exploited.

🔍 Blog: lab.wallarm.com/api-security...

#APISec #Wallarm

1 0 0 0

CySecurity News

@cysecuritynews.bsky.social

11 months ago

APIsec Secures Exposed Customer Data After Unprotected Database Found Online API security firm APIsec has confirmed it secured an exposed internal database that was left accessible on the internet without a password for several days, potentially exposing sensitive customer information. The database, which was discovered by cybersecurity research firm UpGuard on March 5, reportedly contained data stretching back to 2018, including names and email addresses of users and employees from APIsec’s corporate clients. UpGuard said the unsecured database held detailed insights into the security posture of various APIsec customers—data the company collects while monitoring its clients’ APIs for vulnerabilities. This included sensitive information such as whether multi-factor authentication was enabled for particular accounts. UpGuard noted that such details could be valuable to threat actors looking for weaknesses in corporate systems. Initially, APIsec founder Faizel Lakhani downplayed the incident, claiming the database contained only test and debugging data and insisting it was not a production system. However, after being presented with evidence by TechCrunch showing the inclusion of real-world customer information and API scan results, Lakhani acknowledged the severity of the issue. He confirmed the database had been exposed due to human error and said it was quickly secured once the company was notified. Although Lakhani claimed affected customers were notified, he declined to share a copy of the breach notification and did not clarify whether regulatory authorities, such as state attorneys general, had been informed as required by law. UpGuard’s investigation also revealed the presence of private credentials in the exposed dataset, including keys for Amazon Web Services (AWS), as well as login details for Slack and GitHub. While researchers could not verify whether the credentials were active, APIsec later stated they belonged to a former employee and were deactivated two years prior. It remains unclear why outdated keys were stored in the database at all. The incident raises concerns about how companies specializing in cybersecurity manage their own internal systems and handle sensitive client data, especially as APIsec advertises services to Fortune 500 companies

APIsec Secures Exposed Customer Data After Unprotected Database Found Online #APIsec #cybersecurityattacks #DataBreach

0 0 0 0

TechNadu

@technadu.com

11 months ago

APIsec Exposes Customer Names and Emails Amid Security Lapse API testing firm APIsec suffered a security breach that exposed sensitive information, including names and email addresses of customer employees and users.

Researchers found an exposed database without password protection belonging to the API testing firm APIsec[.]ai. This is expected to have exposed about 3TB of data.

#APIsec #Password #Database #Breach #Elasticsearch