API Brief #5: Rogue APIs VS zombie APIs, VMware Horizon servers are under active exploit, and 3 Facts About Kevin Mitnick and the Global Ghost Team

In this brief, we have an article about rogue APIs and zombie APIs. Right after, we have an article about the security firm SentinelOne and how it has dubbed a group TunnelVision. The name is meant to emphasize TunnelVision’s heavy reliance on tunneling tools. In the past, TunnelVision has exploited so-called “1-day” vulnerabilities. And finally, a story about Kevin Mitnick, who is a trusted security consultant to Fortune 500 companies and governments worldwide.
16/03/2022

Rogue APIs VS zombie APIs

This week’s main article is about Rogue APIs VS zombie APIs Rogue API is an API that was not authorized or approved by the company that owns the data or content that the API provides access to. Rogue APIs can be used to access sensitive data or perform actions that the company does not want to allow, read all about it in an article by Mike.
Rogue apis vs zombie apis class=
17/02/2022

VMware Horizon servers are under active exploit by Iranian state hackers

A fascinating story this week by VMware Horizon servers are under active exploit by Iranian state hackers Dan Goodin blogged on Hackers that are exploiting a critical Log4j vulnerability to infect unpatched VMware users with ransomware. Security firm SentinelOne has dubbed the group TunnelVision. The name is meant to emphasize TunnelVisions heavy reliance on tunneling tools and the unique way it deploys them.
23/03/2022

3 Facts About Kevin Mitnick the Global Ghost Team

Lastly an article on 3 Facts About Kevin Mitnick & the Global Ghost Team Kevin Mitnick and his Global Ghost Team are known for helping organizations find weaknesses within their cybersecurity framework through penetration testing. Kevin is a trusted security consultant to Fortune 500 companies and governments worldwide. Kevin and his team use social engineering and other tactics to improve the cybersecurity posture of organizations.

APIBrief.com

A weekly dosage of API Security briefs to help you stay up-to-date.

Protect your API with the latest security news, updates, and events. Subscribe to our API newsletter

More briefs: