API Brief #1: Tigera Tightens Cloud Native Container Security, Tripledigit threshold Browser makers offer compatibility testing tools as version 100 approaches, How Cybersecurity Issues Affect Stock Prices

This week we have news of Tigera claims you can catnap about your container security with its new cloud native application protection platform (CNAPP) for its Calico Cloud . Gartner defined CNAPP as an emerging category of security programs . Tigera’s zero trust drops the traditional security concept of your systems having a “perimeter” and replaces it.

An interesting read on Google has established a test microsite – dubbed Is Chrome 100 yet? – to check if a browser is sending the major version 100 in the User-Agent string. Mozilla’s Firefox browser is due to hit the version 100 threshold in May. Google Chrome 97 is set to hit version 99.

Finally, we have an article on Cyber-attacks hitting critical infrastructures have become less motivated by money. Stronger businesses can take a hit and move past the legal fees and clean-up costs associated with cybersecurity issues. Weaker organizations take longer to recover, if they recover at all.
11/01/2022

IP spoofing bug leaves Django REST applications open to DDoS password cracking attacks

The first article this week by IP spoofing bug leaves Django REST applications open to DDoS passwordcracking attacks Ben Dickson blogged on how security researchers discovered how to send unlimited HTTP requests with the same client. An IP spoofing vulnerability in Django REST allowed attackers to circumvent the framework throttling feature. The feature is meant to protect applications against bot activity, denial-of-service attacks, and malicious activities such as brute-force attempts on login pages, one-time passwords, and password reset pages. People from the Django REST team haven’t yet answered our questions about the security flaw, which was found by a security researcher named Hosein Vita.

Django REST framework DDOS vulenrability

25/01/2022

Tripledigit threshold Browser makers offer compatibility testing tools as version 100 approaches

An insightful article this week by Tripledigit threshold Browser makers offer compatibility testing tools as version 100 approaches John Leyden. In his article, Google and Mozilla are offering tools designed to give website developers an early warning about potential problems in handling three-digit versions of their respective browsers. Google has established a test microsite – dubbed “Is Chrome 100 yet?” – to check if a browser is sending the major version 100 in the User-Agent string. Mozilla’s Firefox browser is due to hit the version 100 threshold in May, and Google Chrome 97 is set to hit version 99. The browser maker is encouraging website developers to send in bug reports they encounter in preparing for the change.
18/02/2022

How Cybersecurity Issues Affect Stock Prices

We have an in-depth article on How Cybersecurity Issues Affect Stock Prices

Justine Robinson writes about Stock prices are affected by changes in supply and demand, but they also fluctuate with company health, economic reports, and trader sentiment. Cyber-attacks hitting critical infrastructures, especially nation-state attacks, have become less motivated by money. Stronger businesses can take a hit and move past the legal fees and clean-up costs associated with cybersecurity issues. Weaker organizations take longer to recover, if they recover at all, and even if you eventually rebound, you may underperform in the stock market for a longer period of time.

APIBrief.com

A weekly dosage of API Security briefs to help you stay up-to-date.

Protect your API with the latest security news, updates, and events. Subscribe to our API newsletter

More briefs: