all InfoSec news
BROKEN FUNCTION LEVEL AUTHORIZATION [API SECURITY — 0x2]
Feb. 6, 2023, 1:46 p.m. | Hashar Mujahid
System Weakness - Medium systemweakness.com
BROKEN FUNCTION LEVEL AUTHORIZATION [API SECURITY — 0x2]
Hi! My name is Hashar Mujahid, and Today we are going to learn about what broken function-level authorization is in modern APIs.
WHAT IS BFLA?
When a user is able to perform certain functions that are above his privilege level then it can cause a lot of problems. In lamen’s terms imagine you create an account on GitHub and instead of only being able to delete your account’s repositories you are able …
api api security authorization broken function level authorization cybersecurity hacking penetration testing security
More from systemweakness.com / System Weakness - Medium
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Junior Cybersecurity Triage Analyst
@ Peraton | Linthicum, MD, United States
Associate Director, Operations Compliance and Investigations Management
@ Legend Biotech | Raritan, New Jersey, United States
Analyst, Cyber Operations Engineer
@ BlackRock | SN6-Singapore - 20 Anson Road
Working Student/Intern/Thesis: Hardware based Cybersecurity Training (m/f/d)
@ AVL | Regensburg, DE