What is the simplest thing organizations can do to improve their API security posture? @InsiderPhD had this to say at the #APIKitchen. What's your take on Vulnerability disclosure programs? Tell me in the Reply section. Repost | Reply | Like #cybersecurity #apisecurity #APIKitchen #informationsecurity

How will your application behave when a malicious user provides a negative number as an input? My #APIKitchen guest, Corey J. Ball, breaks down input validation in the context of API Security for a Fintech API. This is applicable to any other APIs. Pro Tip: When testing endpoints for your Fintech APIs, create test cases that play around with dates in the past. If your savings app for example, is allowing users to set a date in the past, you're in hot soup! This is a common business logic flaw, developers aren't taking care of. Tag or share this video with your security and development team to discuss and learn. PS: What are other input validation issues you have seen in APIs. #apisecurity #softwareengineering #developer #cybersecurity #informationsecurity

Authorization is a critical API security consideration and according to my #APIKitchen guest, @shehackspurple, we need to fix up on one common mistake! It's crucial to ensure that users can only access the functions and records they are authorized to, even if they are already authenticated to use the API. This involves; ☑Carefully planning the authorization model ☑Denying access by default ☑Thoroughly testing the authorization for every user role and function. Tag or share this video with your security and development team to discuss and learn. #apisecurity #softwareengineering #developer #cybersecurity #informationsecurity #programming

What are the most typical mistakes businesses make regarding logging and monitoring of APIs? I asked our guest for this week's episode of #APIKitchen @ThisIsAnuprita and her answer was very insightful. Logging and monitoring plays an extremely important role in API management as well as in secure #SDLC because it not only focuses on the security aspect of it but also covers the performance and availability aspects of the Apis which are crucial to gain customer trust and the success of most businesses. PS: Feel free to join the conversation in the comments section and share what your take was from episode 7 excerpt and any other typical mistakes with API logging and monitoring. #devsecops #confidencestaveley #softwareengineering #apisecurity #informationsecurity #infosec #cybersecurity

PS: Do you think content type and content length are such a big deal? Is your team using these headers? Is this something you'll adopt going forward? #apisecurity #api #apikitchen #cybersecurity #cyber #informationsecurity #tech #apidevelopment #software #appdevelopment #infosec #softwareengineering

Was a great episode on the #APIkitchen with @Judy_infosec @sisinerd

Are you even ready for @Judy_infosec ’s gems ? Episode 1 drops 9am WAT tomorrow on SisinerdTV💃🏻 Be the first to watch when it premieres youtu.be/w-8q5tJQH4A #APIs #apisecurity #APIKitchen #CyberSecurity

Happy thanksgiving from my #APIKitchen ! 🍽

As a developer. API is your gateway to incredible things #understandingAPi #APIKitchen

If you are yet to checkout the video on API kitchen Click on this link: @SisiNerdTV" target="_blank" rel="nofollow noopener">youtube.com/@SisiNerdTV Don't forget to like, comment and share. #CyberSecurity #APIkitchen #secchronicles #APIs @ireteeh @_MsLinda @hackSultan @BlackInCyberCo1 @BowTiedCyber

Our CTO @khal_lodbrok , had a session with @sisinerd on the #APIKitchen. He shared insights from his real-world encounters with this API Security Risk while making some delicious waffles. To watch the full episode, Click lnkd.in/dR_y9S-R

Todays episode of #APIKitchen is sizzling hot 🥵 It’s in fact a must watch! In today’s episode, I introduce an API security risk called BROKEN AUTHENTICATION, while chatting with our guest Chef, Gbolabo Awelewa @khal_lodbrok . He shared insights from his real world encounters with this API Security Risk, while making some delicious waffles. What is your biggest takeaway from this episode? Click youtu.be/BBwhEc3ik1w to watch the full episode. Thanks to our sponsor for this episode @Infoprive , a company challenging mediocrity and complacency to help embed cybersecurity advisory, security engineering, and managed security services & processes. #APIKitchen #APISecurity #BOLATesting #APIAuthorization #APIProtection #APIDevelopment #APIManagement #TechSecurity #Programming #WebDevelopment #DiscoverAPIs #LearnAPIs #cybersecurity #womenintech #security #testing #apitesting

A new episode of #APIKitchen drops in 30mins! 💃🏻

This week on #APIKitchen I’m joined by our first guest chef…I’m sure you can tell it’s a very fun episode with lots to learn. Asides talking about how to cook up secure APIs, our guest chef cooked a delicious meal. In the comment section, guess what he cooked for us, tag our guest/mention his name if you know him or guess what we’ll be talking about this week. Thanks to our sponsor for this episode @Infoprive , a company challenging mediocrity and complacency to help embed cybersecurity advisory, security engineering, and managed security services & processes. #cybersecurity #cyber #apisecurity #api #womenintech #securecoding

I know you’ve been waiting for Episode 2 of #APIKitchen…so here you go! Watch the full episode here youtu.be/CUOS5LyiEBg In this episode I continued to explain the last 5 of the Top 10 @owasp API Security Risks - 2023. You’ll absolutely love it! #cybersecurity #apisec

Surprise…Surprise… #APIKitchen

I can’t wait for you all to see episode one of #APIKitchen For a person who is most times over critical of herself, this one time, I doff my hat for myself and team. Omoh x 100000000000! Thank you so much @TheLarryLeotina … for bringing my crazy vision to life with such excellence and professionalism!