Issue 228: 3rd party API security, OAuth2 step-up deep-dive, shadow and zombie APIs | allinfosecnews.com

Sept. 7, 2023, 10:08 p.m. | Mark Dolan

API Security News apisecurity.io

This week, we have a timely article on the five best practices for ensuring the security of 3rd party APIs, a deep-dive guide into the OAuth2 step-up authentication protocol, and two separate articles on the danger of hidden APIs, namely shadow and zombie APIs. We conclude with not one but two excellent guides from Dana [...]

The post Issue 228: 3rd party API security, OAuth2 step-up deep-dive, shadow and zombie APIs appeared first on API Security News.

api apis api security article articles authentication best practices dive guide hidden issue newsletter archive oauth2 party practices protocol security shadow week zombie

More from apisecurity.io / API Security News

Issue 247: Dropbox and Dell breaches, vulnerability in Next.js, API growth causing concerns 1 week, 2 days ago | apisecurity.io

api breach breaches dell +16

Issue 246: Critical flaw in API portal, securing GraphQL, building bulletproof APIs 3 weeks, 2 days ago | apisecurity.io

api apis api security application +20

Issue 245: Delinea patches API vulnerability, API vulnerability in Palo Alto devices 1 month ago | apisecurity.io

alto api api design api vulnerability +25

Issue 244: Threats to enterprises in the cloud, looming threats to APIs, API SDK generation … 1 month, 3 weeks ago | apisecurity.io

api apis articles challenges +13

Issue 243: Economics of API attacks, understanding CORS, blocking compromised API tokens 2 months ago | apisecurity.io

api api attacks apis articles +20

Issue 242: API governance to avoid tech sprawl, API security in digital transformation, AI for … 2 months, 2 weeks ago | apisecurity.io

age api api governance apis +16

Issue 241: Two critical flaws in FortiSIEM product, making public APIs private, API security strategy 3 months ago | apisecurity.io

api apis api security api security strategy +22

Issue 240: Spoutible API leakage, 15M Trello profiles scraped, API secret tokens leaked 3 months, 2 weeks ago | apisecurity.io

api api security atlassian big +19

Issue 239: Hugging Face API token breach, SonicWall firewalls exploit, Kubernetes API gateway guide 4 months ago | apisecurity.io

api api gateway api security api security checklist +20

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel

View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States

View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States

View on infosec-jobs.com