May 6, 2024 at 09:15AM Anetac, a Silicon Valley startup, has revealed its platform for managing non-human identities and secured $16 million in funding led by Liberty Global. The company’s Dynamic Identity and Security Platform offers real-time visibility into API and access keys, service accounts, and tokens. Anetac’s solution is already being used by various … Read more
May 1, 2024 at 05:14PM Organizations focusing on API security must prioritize identifying and managing shadow APIs, as they pose significant risks if left unaddressed. Rupesh Chokshi from Akamai highlights the prevalence of these endpoints and emphasizes the need to either document or decommission them. He also outlines the broader challenges and attack vectors associated … Read more
November 17, 2023 at 06:00AM An unidentified threat actor has been uploading malware-laden fake Python libraries to the PyPI repository for the past six months. Disguised as legitimate packages, these 27 libraries have attracted thousands of downloads from various countries. The attacker used steganography to hide malicious payloads within innocent-looking image files. The packages included … Read more
October 24, 2023 at 08:09AM API modernization is crucial for organizations to enhance security and protect against threats like data breaches and unauthorized access. To achieve this, organizations should use strong authentication methods, encryption for data transfer, access control policies, real-time monitoring, security audits, and employee education. Gloo Gateway is a cloud-native API management solution … Read more