Company provides required API security measures to meet 2023 cybersecurity mandates San Francisco, CA, January 10, 2023 — Traceable, the industry’s leading API security and observability company, today announced it is providing the necessary API security measures to enable FDIC-insured financial institutions to meet the latest Federal Financial Institutions Examination Council (FFIEC) cybersecurity compliance mandates. […]
5 GraphQL Trends to Watch in 2023
The GraphQL query language had a big year in 2022. We witnessed its increase in production use cases, solving overfetching and underfetching concerns that plagued traditional API integrations. GraphQL can significantly improve usability, aggregate multiple services and optimize how data is ported from system to system. Yet, GraphQL is also prone to new security concerns. […]
DevOps Connect: DevSecOps — Building a Modern Cybersecurity Practice
Malicious actors are constantly looking for new ways to gain access to sensitive data and corrupt systems. As software supply chain attacks are on the rise, security has become a top priority and a growing area in the regulatory and standards landscape. DevOps teams need to approach security as an ongoing part of the software […]
The APIs You Really Don’t Know About
A few years ago, we were rightly warned about the amount of exposure our APIs created. A massive attack surface that often used “security by obscurity” as its primary method of protection. We’ve come a long way since then, building secrets, tokens, RBAC and even more into our API interfaces. We’re still behind in getting […]
Does GraphQL Introduce New Security Risks?
The GraphQL query language is an excellent tool for increasing the ease of data sharing. The premise is that you request the fields you need in a single bundled request, avoiding multiple network calls. Due to its usability, GraphQL is a growing area of development. Yet, as with any new technology, it comes with caveats. […]
Radware Embraces APIs to Improve AppSec Across Multiple Clouds
Radware this week launched an application programming interface (API) approach to securing multiple clouds designed from the ground up to be an extension of a DevSecOps workflow. Eyal Arazi, a senior product marketing manager in Radware’s security group, said that Radware SecurePath makes it possible to invoke any of the company’s cloud security offerings via […]
How to Build an Effective API Security Strategy
Application Programming Interfaces (APIs) enable organizations to grow their businesses and drive innovation. APIs allow applications to easily transfer data to external third-party developers, business partners and internal departments. Since APIs have access to valuable and sensitive data, they have increasingly become a target for cyberattacks. At the API Security Summit, taking place on March […]
Taking a DevSecOps Approach to API Security
An application programming interface (API) is a data transfer approach that enables services within an application to talk to other applications (or other services within a system). Essentially, it enables Service A to talk to Service B in a uniform way. Companies benefit from APIs on a daily basis without even thinking about them. APIs […]
API Sprawl a Looming Threat to Digital Economy
New estimates say the total number of public and private APIs in use is approaching a whopping 200 million. APIs are becoming increasingly crucial to the global digital economy. They are the backbone of many digital platforms and drive the composable enterprise model. But this ubiquity presents sprawl issues. F5 recently released a study that […]
GraphQL’s Greatest Strength is Also its Greatest Weakness
Michael Scott: Why don’t I tell you what my greatest weaknesses are? I work too hard, I care too much and sometimes I can be too invested in my job. David Wallace: Okay. And your strengths? Michael Scott: Well, my weaknesses are actually strengths. David Wallace: Oh. Yes. Very good. GraphQL is a new query […]