all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Issue 183: API vulnerability in VeryFitPro, exposed Docker APIs targeted by botnets, TruffleHog finds stored credentials

Add to bookmarks
May 4, 2022, 4:11 p.m. | Colin Domoney

API Security News apisecurity.io

This week, we have two API vulnerabilities: the first in the VeryFitPro app allowed attackers access to a backend API, while in the other LemonDuck botnet attacked exposed Docker APIs. On more positive side, we also have a new version of TruffleHog detecting of stored API credentials, as well as views on how to securely [...]


Read More...


The post Issue 183: API vulnerability in VeryFitPro, exposed Docker APIs targeted by botnets, TruffleHog finds stored credentials appeared first on API …

api apis botnets credentials docker docker apis exposed newsletter archive trufflehog vulnerability

Visit resource

More from apisecurity.io / API Security News

Issue 245: Delinea patches API vulnerability, API vulnerability in Palo Alto devices 1 day, 21 hours ago | apisecurity.io
alto api api design api vulnerability +25
Issue 244: Threats to enterprises in the cloud, looming threats to APIs, API SDK generation … 2 weeks, 2 days ago | apisecurity.io
api apis articles challenges +13
Issue 243: Economics of API attacks, understanding CORS, blocking compromised API tokens 3 weeks, 4 days ago | apisecurity.io
api api attacks apis articles +20
Issue 242: API governance to avoid tech sprawl, API security in digital transformation, AI for … 1 month, 2 weeks ago | apisecurity.io
age api api governance apis +16
Issue 241: Two critical flaws in FortiSIEM product, making public APIs private, API security strategy 1 month, 4 weeks ago | apisecurity.io
api apis api security api security strategy +22
Issue 240: Spoutible API leakage, 15M Trello profiles scraped, API secret tokens leaked 2 months, 1 week ago | apisecurity.io
api api security atlassian big +19
Issue 239: Hugging Face API token breach, SonicWall firewalls exploit, Kubernetes API gateway guide 2 months, 3 weeks ago | apisecurity.io
api api gateway api security api security checklist +20
Issue 238: APIs used to target business, cloud-native for APIs, and APIs becoming attractive targets 3 months, 1 week ago | apisecurity.io
apis articles business businesses +10
Issue 237: Six API trends for 2024, API keys leading to vulnerabilities, the future of … 3 months, 3 weeks ago | apisecurity.io
api api discovery api keys discovery +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Technical Senior Manager, SecOps | Remote US

@ Coalfire | United States
View on infosec-jobs.com

Global Cybersecurity Governance Analyst

@ UL Solutions | United States
View on infosec-jobs.com

Security Engineer II, AWS Offensive Security

@ Amazon.com | US, WA, Virtual Location - Washington
View on infosec-jobs.com

Senior Cyber Threat Intelligence Analyst

@ Sainsbury's | Coventry, West Midlands, United Kingdom
View on infosec-jobs.com

Embedded Global Intelligence and Threat Monitoring Analyst

@ Sibylline Ltd | Austin, Texas, United States
View on infosec-jobs.com

Senior Security Engineer

@ Curai Health | Remote
View on infosec-jobs.com
View more jobs