9 Vital API Security Threats Every Team Should Watch For

Written by moesif | Published 2020/09/04
Tech Story Tags: api-security | api-integration | api-analytics | security-of-api-keys | ddos-mitigation | endpoint-security | restful-apis | hackernoon-top-story

TLDR The hard part about APIs is that it provides direct access to large amounts of data while bypassing browser precautions. Instead of worrying about SQL injection and XSS issues, you should be concerned about the bad actor who was able to paginate through all your customer records and their data. Typical prevention mechanisms like Captchas and browser fingerprinting won’t work since APIs by design need to handle a very large number of API accesses even by a single customer. Some of these are on the OWASP Security API list, but not all.via the TL;DR App

no story

Written by moesif | User-Centric API Analytics
Published by HackerNoon on 2020/09/04