API Brief #0: IP spoofing bug leaves Django REST applications open to DDoS passwordcracking attacks, Cybersecurity Challenges Facing Critical Infrastructure, Ukraine Open Warfare in the Cyber World

This week, we have a comprehensive article on IP spoofing vulnerability in Django REST allowed attackers to circumvent the framework’s throttling feature. The feature is meant to protect applications against bot activity, denial-of-service attacks, and malicious activities. The Django REST team has not yet responded to our request for comment. There is also an excellent article on Security breaches will occur every 11 seconds in 2022, down from 14 seconds in years prior. Biometrics continues to be the future of cybersecurity, and fingerprint sensors remain one of the most common ways to store this information. Despite cybersecurity’s importance, the shortage of information security professionals remains extremely high. To finish off we have a piece on Cyber warfare has been an open secret for years, but the conflict in Ukraine has brought it out into the open. Anonymous took out the broadcast network, Russia Today (RT) and the Russian Duma and several military servers were similarly hit within the past 48 hours.
11/01/2022

IP spoofing bug leaves Django REST applications open to DDoS passwordcracking attacks

An insightful article this week by IP spoofing bug leaves Django REST applications open to DDoS passwordcracking attacks Ben Dickson blogged on Security researcher discovers how to send unlimited HTTP requests with the same client. IP spoofing vulnerability in Django REST allowed attackers to circumvent the frameworks throttling feature. The feature is meant to protect applications against bot activity, denial-of-service attacks, and malicious activities such as brute-force attempts on login pages, one-time passwords, and password reset pages. The Django REST team has not yet responded to our request for comment on the vulnerability, which was discovered by security researcher Hosein Vita.
28/01/2022

Cybersecurity Challenges Facing Critical Infrastructure

An interesting piece this week by Cybersecurity Challenges Facing Critical Infrastructure Justine Robinson blogged on Companies that work in critical infrastructure (CI) sectors particularly have a lot to lose when it comes to cybersecurity attacks . Experts predict that security breaches will occur every 11 seconds in 2022, down from 14 seconds in years prior . Biometrics continues to be the future of cybersecurity, and fingerprint sensors remain one of the most common ways to store this information . Despite cybersecuritys importance, the shortage of information security professionals remains extremely high . CI cuts across industries and requires a vast network of suppliers, analysts, and other parties .
26/02/2022

Ukraine Open Warfare in the Cyber World

We have an in-depth article on Ukraine Open Warfare in the Cyber World Lou Covey wrote about Cyber warfare has been an open secret for years, but the conflict in Ukraine has brought it out into the open . Anonymous took out the broadcast network, Russia Today (RT) and the Russian Duma and several military servers were similarly hit within the past 48 hours . Ukrainian hackers aligned with Russia have been attacking the Ukrainian infrastructure, hoping to get on the payroll of the GRU . Dr. Pano Yannakogeorgos of NYU’s Center for Global Affairs talked with Lou Covey about the extent of guerrilla-type warfare from unaligned hackers on both sides .

APIBrief.com

A weekly dosage of API Security briefs to help you stay up-to-date.

Protect your API with the latest security news, updates, and events. Subscribe to our API newsletter

More briefs: