![]() Plus, there has been a rapid expansion of tech projects since the start of the Covid-19 pandemic, which often leads companies to skip some security steps, she added.īy 2025, less than half of companies’ APIs will be managed properly because their growth will eclipse the ability of management tools,Ĭommon practices to secure APIs include using user authentication and authorization and encrypting their communications. There is a lack of understanding on how to secure APIs outside of cybersecurity teams, and there may be different business units within companies involved in creating an API, Ms. The main challenge is getting cybersecurity teams to realize how vulnerable their APIs are, he said. “API security is an area that’s largely been overlooked,” saidĬhief security officer of the Health Information Sharing and Analysis Center, a nonprofit group that enables healthcare organizations to share information about cyber threats. Cybersecurity and Infrastructure Security Agency circulated an advisory warning companies about an API-related vulnerability in a product from tech company provider Veeam Software. Curry said he notified the companies of the vulnerabilities before disclosing them publicly. The manufacturers didn’t respond to requests for comment. Showed he could remotely control vehicles, including starting and stopping them, after discovering security flaws in APIs in cars from manufacturers including Mercedes-Benz Group AG, Porsche Automobil Holding SE and ![]() Other large companies’ APIs have proven vulnerable recently. Last year, the company offered to pay $350 million to settle a class-action suit, and pledged to spend $150 million on security in 20. T-Mobile was previously hacked in 2021 in a breach that exposed the data of more than 50 million customers.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |