all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Issue 228: 3rd party API security, OAuth2 step-up deep-dive, shadow and zombie APIs

Add to bookmarks
Sept. 7, 2023, 10:08 p.m. | Mark Dolan

API Security News apisecurity.io

This week, we have a timely article on the five best practices for ensuring the security of 3rd party APIs, a deep-dive guide into the OAuth2 step-up authentication protocol, and two separate articles on the danger of hidden APIs, namely shadow and zombie APIs. We conclude with not one but two excellent guides from Dana [...]


Read More...


The post Issue 228: 3rd party API security, OAuth2 step-up deep-dive, shadow and zombie APIs appeared first on API Security News.

api apis api security article articles authentication best practices dive guide hidden issue newsletter archive oauth2 party practices protocol security shadow week zombie

Visit resource

More from apisecurity.io / API Security News

Issue 245: Delinea patches API vulnerability, API vulnerability in Palo Alto devices 19 hours ago | apisecurity.io
alto api api design api vulnerability +25
Issue 244: Threats to enterprises in the cloud, looming threats to APIs, API SDK generation … 2 weeks, 1 day ago | apisecurity.io
api apis articles challenges +13
Issue 243: Economics of API attacks, understanding CORS, blocking compromised API tokens 3 weeks, 3 days ago | apisecurity.io
api api attacks apis articles +20
Issue 242: API governance to avoid tech sprawl, API security in digital transformation, AI for … 1 month, 1 week ago | apisecurity.io
age api api governance apis +16
Issue 241: Two critical flaws in FortiSIEM product, making public APIs private, API security strategy 1 month, 3 weeks ago | apisecurity.io
api apis api security api security strategy +22
Issue 240: Spoutible API leakage, 15M Trello profiles scraped, API secret tokens leaked 2 months, 1 week ago | apisecurity.io
api api security atlassian big +19
Issue 239: Hugging Face API token breach, SonicWall firewalls exploit, Kubernetes API gateway guide 2 months, 3 weeks ago | apisecurity.io
api api gateway api security api security checklist +20
Issue 238: APIs used to target business, cloud-native for APIs, and APIs becoming attractive targets 3 months, 1 week ago | apisecurity.io
apis articles business businesses +10
Issue 237: Six API trends for 2024, API keys leading to vulnerabilities, the future of … 3 months, 3 weeks ago | apisecurity.io
api api discovery api keys discovery +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Security Specialist

@ Nestlé | St. Louis, MO, US, 63164
View on infosec-jobs.com

Cybersecurity Analyst

@ Dana Incorporated | Pune, MH, IN, 411057
View on infosec-jobs.com

Sr. Application Security Engineer

@ CyberCube | United States
View on infosec-jobs.com

Linux DevSecOps Administrator (Remote)

@ Accenture Federal Services | Arlington, VA
View on infosec-jobs.com

Cyber Security Intern or Co-op

@ Langan | Parsippany, NJ, US, 07054-2172
View on infosec-jobs.com

Security Advocate - Application Security

@ Datadog | New York, USA, Remote
View on infosec-jobs.com
View more jobs