Bring your own device (BYOD) policies are a great example of deperimeterization and the principles of Zero Trust.Continue reading
WebAPISecurity
Build in security and resilience with Infrastructure Security Month
Critical infrastructure is a system of other interconnected systems that are geographically dispersed and managed by multiple stakeholders. Infrastructure Security Month kicks off with the reminder that shared infrastructure is a shared responsibility.Continue reading
Q&A: Mitigating the risks of API-based app development
API attacks are very much on the rise these days, with cybercriminals turning to this type of attack more and more often. Get insights on why from SVP Tim Jefferson.Continue reading
Report: The state of application security in 2021
Applications have become an increasingly attractive target for cybercriminals, and the rapid shift to remote work has only intensified this.Continue reading
TLS1.0 and TLS1.1 officially deprecated by IETF RFC8996
Applications and products using older versions of TLS are under-secured and vulnerable.Continue reading
AppSec predictions 2021: Attackers increasingly pivot to APIs
This is the second post in a three-part series on application security trends that covers the 2021 outlook on APIs, bots, and supply chain attacks.Continue reading
Reviewing our 2019 AppSec predictions: Attacks against APIs
APIs require significant security to ensure that an app doesn’t become best known for a massive breach.Continue reading
AppSec News Roundup for February 2019: Credential stuffing, Facebook CSRF, public APIs, and more
Here are a handful of the most significant #AppSec news items from February 2019. More...Continue reading