42Crunch

Join 42Crunch's Axel Grosse tomorrow at the local OWASP® Foundation Cologne chapter to learn more about how AI can be used to exploit vulnerable APIs, and how to protect these same APIs being exploited. What’s not to like, a good Koelsch and some API security chats! https://lnkd.in/eZvhet4Q #apisecurity #AIsecurity Katherine Leese

Secure Code Warrior's recent industry survey of 600 enterprises identified that large enterprises (7k+ developers) adopting a secure-by-design approach can predictably reduce vulnerabilities by a massive 47-53%. Anthony Lonergan showcases on our upcoming webinar how we enable a secure-by-design approach to securing your APIs. Register: https://lnkd.in/ejSb3jVm

The recent report by Sam Curry of how a team of ethical hackers discovered vulnerabilities in Kia’s APIs highlights just some of the OWASP® Foundation API Top 10 vulnerabilities that can be exploited by hackers. Don’t make it easy for hackers. If they want unauthorized access to partner APIs, force them to break glass and climb through some windows! Join us next month for a webinar as we demonstrate how to incorporate best practice guidelines to help build secure, resilient APIs by design. Key Takeaways - Practical insights to enhance the security of your applications - How to leverage OWASP guidelines for secure API development - How to get developers invested in the security of their APIs Register: https://lnkd.in/ejSb3jVm #apisecurity #securitybydesign

The #OWASP Top 10 API Security Risk list provides a clear roadmap of the most common and dangerous vulnerabilities that can compromise your APIs. Join Anthony Lonergan Lonergan as he demonstrates how you can incorporate the OWASP guidelines into your security initiative for software development to help build secure, resilient APIs by design. Key takeaways: - How to leverage OWASP guidelines for API development - How to get developers invested in the security of their APIs - Practical insights to enhance the security of your applications. Register: https://lnkd.in/ejSb3jVm OWASP® Foundation #apisecurity #securitybydesign

Reminder, if you’re at the Nordic APIs Platform Summit this week, be sure to check out Axel Grosse’s session exploring how companies go from:- Easy, to Good to Secure API Design. https://lnkd.in/emrVXGs6 He demos using tools such as #Spectral #Copilot and #42Crunch Stefan Nilsson Renee Gilliland Bill Doerrfeld Jacques Declas #platformsummit2024 #PS24 #nordicapis

A recent McKinsey & Company Global survey on AI reports that 65% of organizations are regularly using #GenAI, nearly double the percentage from their previous survey just ten months ago. As enterprises increasingly integrate LLMs, securing the APIs that connect them to critical data sources is non-negotiable. A robust approach to API security that includes continuous testing and hardening, guided by standards like OAS, is essential This blog from Tom Chang explains where to start: https://lnkd.in/daxCGUcD #genAIsecurity #apisecurity

85% of enterprises acknowledged suffering an API attack in 2023. Axel Grosse demonstrates next month at Nordic APIs Platform Summit how security and development teams can collaborate to improve the overall security posture of their API implementations. He shows how to fortify your APIs leveraging Copilot AI assistant and static and dynamic testing for code remediation. Event: https://lnkd.in/emrVXGs6 #apisecurity #copilot #platformsummit

A recent McKinsey study reports that 65% of firms say that their organizations regularly use GenAI, double the percentage from the same survey only 10 months earlier.   If your business is using or considering adopting GenAI, have you reviewed the security implications? The real power of GenAI and Language Learning Modules comes when they are connected via APIs to a data source, such as your CRM, ERP or HRMS. API security is a must have if you want to enable the responsible and effective deployment of GenAI technology.   Join our webinar this week to learn how to prevent your APIs from being undermined by GenAI with a proactive "API security as code" approach. Attend webinar: https://lnkd.in/e27U-8qp #GenAI #LLM #APIsecurity

API discovery is a much discussed and confusing topic as many firms have invested in what they believe to be an API security solution, only to discover that the breaches continue. Ironically, the majority of enterprise APIs are already documented and known about. The starting points are within the company, just not necessarily under the supervision of the security team. By collaborating with colleagues in architecture, application and API development and management, security professionals can achieve a complete inventory of the API estate. Axel Grosse explains how security teams can build a complete API inventory with a proactive approach to the cataloging and indexing of their APIs and achieve up to the minute governance of their API estate. Read blogpost: https://lnkd.in/e7qCxnUf #APIinventory #apidiscovery #apisecurity