all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Issue 231: API authentication bypass in Ivanti Sentry, Docker images expose API and keys

Add to bookmarks
Oct. 18, 2023, 5:04 p.m. | Mark Dolan

API Security News apisecurity.io

This week, we have news of an API authentication bypass vulnerability in the Ivanti Sentry cybersecurity product and a report into Docker images that are exposing APIs and private keys. We also have articles on API security’s role in protecting retail apps, how APIs and generative AI interoperate, and how attackers bypass Web Application Firewalls. [...]


Read More...


The post Issue 231: API authentication bypass in Ivanti Sentry, Docker images expose API and keys appeared first on API Security News …

api api authentication apis api security apps articles authentication authentication bypass bypass bypass vulnerability cybersecurity docker expose exposing generative images issue ivanti ivanti sentry keys newsletter archive private private keys product protecting report retail role security sentry vulnerability week

Visit resource

More from apisecurity.io / API Security News

Issue 244: Threats to enterprises in the cloud, looming threats to APIs, API SDK generation … 2 weeks ago | apisecurity.io
api apis articles challenges +13
Issue 243: Economics of API attacks, understanding CORS, blocking compromised API tokens 3 weeks, 1 day ago | apisecurity.io
api api attacks apis articles +20
Issue 242: API governance to avoid tech sprawl, API security in digital transformation, AI for … 1 month, 1 week ago | apisecurity.io
age api api governance apis +16
Issue 241: Two critical flaws in FortiSIEM product, making public APIs private, API security strategy 1 month, 3 weeks ago | apisecurity.io
api apis api security api security strategy +22
Issue 240: Spoutible API leakage, 15M Trello profiles scraped, API secret tokens leaked 2 months, 1 week ago | apisecurity.io
api api security atlassian big +19
Issue 239: Hugging Face API token breach, SonicWall firewalls exploit, Kubernetes API gateway guide 2 months, 3 weeks ago | apisecurity.io
api api gateway api security api security checklist +20
Issue 238: APIs used to target business, cloud-native for APIs, and APIs becoming attractive targets 3 months ago | apisecurity.io
apis articles business businesses +10
Issue 237: Six API trends for 2024, API keys leading to vulnerabilities, the future of … 3 months, 3 weeks ago | apisecurity.io
api api discovery api keys discovery +8
Issue 236: Using a developer portal, dark data in APIs, an update on Ray AI … 4 months, 1 week ago | apisecurity.io
academy api apis article +19

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Associate Manager, BPT Infrastructure & Ops (Security Engineer)

@ SC Johnson | PHL - Makati
View on infosec-jobs.com

Cybersecurity Analyst - Project Bound

@ NextEra Energy | Jupiter, FL, US, 33478
View on infosec-jobs.com

Lead Cyber Security Operations Center (SOC) Analyst

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Junior Information Security Coordinator (Internship)

@ Garrison Technology | London, Waterloo, England, United Kingdom
View on infosec-jobs.com

Sr. Security Engineer

@ ScienceLogic | Reston, VA
View on infosec-jobs.com
View more jobs