FloData’s Post

On May 16, 2024 1:00 PM EDT / 17:00 UTC join our webinar into common myths surrounding GraphQL, including its complexity, applicability, security, and performance compared to REST. Gain valuable insights and best practices to maximize the benefits of this powerful API query language. Don't miss out!

Great news ahead! According to Sysdig's 2024 #CloudNative Security and Usage Report, security teams are making remarkable progress in reducing high-risk vulnerability debt quickly, all thanks to targeted remediation efforts. Real customer data revealed workloads with in‑use packages containing fixable critical or high vulnerabilities have been reduced by nearly 𝗛𝗔𝗟𝗙, down from 15% to 8.2% over the last year. This is just one of many fascinating data points from Sysdig's annual report. Click the image below to download the full report — or better yet, attend Sysdig's virtual 𝗦𝗼𝗹𝘂𝘁𝗶𝗼𝗻𝘀 𝗙𝗼𝗿𝘂𝗺 this Thursday, Feb 29th to listen in as experts from Sysdig, SANS Institute, and Hacker Valley Media analyze more key report findings! 📅 Register here: https://okt.to/iut5OU

Graphql: information disclosure via graphql introspection in openshiftA vulne...A vulnerability was found in GraphQL due to improper access controls on the GraphQL introspection query. This flaw allows unauthorized users to retrieve a comprehensive list of available queries an...https://lnkd.in/dRudCX2S

Sometimes people get caught up with how Abnormal is different than competitors and other API architectures for email. Abnormal’s pure API solution offers a modern email security architecture and creates a variety of advantages over legacy options. Abnormal installs via a simple API Integration, directly with the mail provider, with no need for the creation of journal and/or transport rules. All mail is scanned via the API and remediated before a user could act on it. This modern approach means that there is no rerouting of mail, no risk of outages, no delay in delivery, and only malicious emails are stored for the purview of analysts. https://lnkd.in/g8cZ5taU

At LogRhythm, we're not just stopping breaches, we're setting the standard. Discover the advanced capabilities of LogRhythm Axon in our latest quarterly release. https://lnkd.in/gskkwk5n

I love this approach to API security and analytics. Many enterprises fail to catalog API usage metrics entirely, or successfully catalog usage metrics but fail to derive insight. Smaller companies often fail to consider discovering or monitoring API quality & security at all. In your role, can you immediately access your endpoint usage metrics? Can you report on compliant/non-compliant endpoints? Can you profile and highlight API clusters based on source, destination, payload size, method? Developing a robust, exhaustive API catalog is crucial to internal operations. Scoring, visualizing, and reporting these metrics illuminates the API security landscape and provides cost-savings opportunities. Fantastic execution, Process Tempo Inc. and Neo4j.

🚀 Bridging the Gap Between Observability and Security: The Role of NetFlow Data 🔐 In today’s complex IT landscape, observability and security are more interconnected than ever. NetFlow data plays a crucial role in bridging the gap, offering insights that help us understand the availability and uptime of applications and infrastructure and how to protect them effectively. By integrating detailed network information, we can enhance both observability and security. Imagine having the power to detect anomalies across multiple data sources, link them together, and identify high-priority threats faster. That's the magic of leveraging NetFlow data. Check out our latest video, which discusses real-world examples of how companies use this approach to secure their systems while maintaining performance and uptime! 💻🔍 https://lnkd.in/eMVbuc-A S/O Heiko Burdack | Steve Kearns | Robert Cowart

How we help to build a bridge between often siloed NetOps and SecOps and why it is important!

It's no surprise that API calls dominate web traffic, but as businesses rapidly expand their API ecosystems to meet customer demand, they create new pathways to sensitive data. Learn more about API security risks in this infographic. ⤵️

So I guess there was a LinkedIn outage for a bit today? Weird... #cybersecurity #cve of the Day, March 6, 2024 CVE: CVE-2024-0199 (https://lnkd.in/e3SwZuEh) and CVE-2024-1299 (https://lnkd.in/e_cNPAvG) Title: An authorization bypass and privilege escalation vulnerability were discovered in GitLab Affected Technologies: - GitLab Community and Enterprise Editions Version... -> prior to 16.7.7 -> 16.8-16.8.3 -> 16.9-16.9.1 CVSS v3.1 Scores: - CVE-2024-0199 -> 7.7, High, CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N - CVE-2024-1299 -> 6.5, Medium, CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N CWE: - CWE-284 (https://lnkd.in/eFNNtbtu) for CVE-2024-0199 - CWE-863 (https://lnkd.in/ean9Hq_A) for CVE-2024-1299 Relevant MITRE ATT&CK Techniques (Note, this is my opinion): -CVE-2024-0199 -> Abuse Elevation Control Mechanism -> Bypass User Access Control (https://lnkd.in/eAnkYQs6) - CVE-2024-1299 -> Access Token Manipulation (https://lnkd.in/eUtE4ZUu) - Both -> Exploitation for Privilege Escalation (https://lnkd.in/eDWQm6Zx) GitLab recommends in their advisory (https://lnkd.in/ezTwePHx) that all affected users should update as soon as possible. More information will likely be available if/when the HackerOne reports are made publicly available.