Concerned your API keys and other secrets are out in the open?
Free, no obligation API Leaks Assessment
Close
Privacy settings
We use cookies and similar technologies that are necessary to run the website. Additional cookies are only used with your consent. You can consent to our use of cookies by clicking on Agree. For more information on which data is collected and how it is shared with our partners please read our privacy and cookie policy: Cookie policy, Privacy policy
We use cookies to access, analyse and store information such as the characteristics of your device as well as certain personal data (IP addresses, navigation usage, geolocation data or unique identifiers). The processing of your data serves various purposes: Analytics cookies allow us to analyse our performance to offer you a better online experience and evaluate the efficiency of our campaigns. Personalisation cookies give you access to a customised experience of our website with usage-based offers and support. Finally, Advertising cookies are placed by third-party companies processing your data to create audiences lists to deliver targeted ads on social media and the internet. You may freely give, refuse or withdraw your consent at any time using the link provided at the bottom of each page.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
webinar

May 5, 2022 11:00 AM

API Security: A 10-year Retrospective

Thanks for the download. 
Thank you for signing up!
A confirmation email has been sent to the address you provided.
We look forward to seeing you! Please add the event in your calendar.
Thanks for filling out the form!
The webinar link will open in the new tab. If its not, please follow
this link

API security is a hot topic. But do you know that the first vulnerability in API was publicly disclosed 24 years ago, back on April 2, 1998?

So we decided to make an overview on trends, vulnerability types and affected products over the course of last years:
• ~7000 reports, including CVE, bug bounty reports and others sources analyzed
• About 1000 issues /year during last 3 years and it’s growing
• All the data will be available to download and further research

This work is based on research of API security issues and exploits that were disclosed throughout the last years. We explain what issues were found, and which vendors and products were affected. We map these issues across industry standards, including CWEs, CVEs, both OWASP Top-10 and API OWASP Top-10, and CVSS scores.

You will learn about oldest and newest API issues and how they evolved, their exploitation possibilities, and how to protect your APIs against them.

Our speakers:

Ivan Novikov

Ivan Novikov

CEO at Wallarm

  • Product security professional
  • inventor of memcached injection and SSRF types of attacks
  • Speaker at HITB, Black Hat, and other industry events