Tech Zone 360

The Difference Between Authentication and Authorization for API Security

Application Programming Interfaces (APIs) are the backbone of many services and applications, enabling different software to interact with each other seamlessly. However, with this increased ...
ZDNet

GraphQL API authorization flaw found in major B2B financial platform

Cybersecurity firm Salt Labs discovered a GraphQL API authorization vulnerability in a large B2B financial technology platform. It would give attackers the ability to submit unauthorized transactions ...
SiliconANGLE

Intruder releases free tool to detect broken API authorization

Attack surface management company Intruder Solutions Ltd. today announced the launch of AutoSwagger, a free, open-source tool that scans OpenAPI-documented application programming interfaces for ...