Issue 173: Coinbase vulnerability, AuthN/AuthZ best practices, bad bots, Elgato Key light hack | allinfosecnews.com

Feb. 23, 2022, 7:23 p.m. | Colin Domoney

API Security News apisecurity.io

This week, we have news of the eye-opening vulnerability on the Coinbase platform which netted $250,000 in bug bounty. There’s also an excellent guide on best practices for authentication and authorization for REST APIs, an article on the growth of bad bots and how to mitigate against them, and a fun read from APIHandyman on [...]

The post Issue 173: Coinbase vulnerability, AuthN/AuthZ best practices, bad bots, Elgato Key light hack appeared first on API Security News.

authz bad bad bots best practices bots coinbase hack key newsletter archive practices vulnerability

More from apisecurity.io / API Security News

Issue 244: Threats to enterprises in the cloud, looming threats to APIs, API SDK generation … 1 week, 6 days ago | apisecurity.io

api apis articles challenges +13

Issue 243: Economics of API attacks, understanding CORS, blocking compromised API tokens 3 weeks, 1 day ago | apisecurity.io

api api attacks apis articles +20

Issue 242: API governance to avoid tech sprawl, API security in digital transformation, AI for … 1 month, 1 week ago | apisecurity.io

age api api governance apis +16

Issue 241: Two critical flaws in FortiSIEM product, making public APIs private, API security strategy 1 month, 3 weeks ago | apisecurity.io

api apis api security api security strategy +22

Issue 240: Spoutible API leakage, 15M Trello profiles scraped, API secret tokens leaked 2 months, 1 week ago | apisecurity.io

api api security atlassian big +19

Issue 239: Hugging Face API token breach, SonicWall firewalls exploit, Kubernetes API gateway guide 2 months, 3 weeks ago | apisecurity.io

api api gateway api security api security checklist +20

Issue 238: APIs used to target business, cloud-native for APIs, and APIs becoming attractive targets 3 months ago | apisecurity.io

apis articles business businesses +10

Issue 237: Six API trends for 2024, API keys leading to vulnerabilities, the future of … 3 months, 3 weeks ago | apisecurity.io

api api discovery api keys discovery +8

Issue 236: Using a developer portal, dark data in APIs, an update on Ray AI … 4 months, 1 week ago | apisecurity.io

academy api apis article +19

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Premium Hub - CoE: Business Process Senior Consultant, SAP Security Role and Authorisations & GRC

@ SAP | Dublin 24, IE, D24WA02

View on infosec-jobs.com

Product Security Response Engineer

@ Intel | CRI - Belen, Heredia

View on infosec-jobs.com

Application Security Architect

@ Uni Systems | Brussels, Brussels, Belgium

View on infosec-jobs.com

Sr Product Security Engineer

@ ServiceNow | Hyderabad, India

View on infosec-jobs.com

Analyst, Cybersecurity & Technology (Initial Application Deadline May 20th, Final Deadline May 31st)

@ FiscalNote | United Kingdom (UK)

View on infosec-jobs.com