TechNadu5d ago

API abuse = misuse of trust, not system compromise.
“Early-stage API attacks are often subtle and blend into normal operations.”
“Automation amplifies every attack. Bots can enumerate endpoints… faster than humans could.”

Read more:
https://www.technadu.com/how-api-attacks-exploit-authentication-authorization-gaps-and-trusted-application-workflows/623589/

#APISecurity #APIAbuse #ThreatDetection

Show threadAnnual Computer Security Applications ConferenceMay 9, 2024
Then came Shaon et al.'s "The Queen's Guard: A Secure Enforcement of Fine-grained Access Control In Distributed Data Analytics Platforms", presenting a attribute-based #accesscontrol framework that is secure against platform #APIabuse #attacks. (https://www.acsac.org/2023/program/final/s309.html) 4/5
ACSAC2023 Program – powered by OpenConf

ITSEC NewsFeb 4, 2020
Twitter API Abused to Uncover User Identities - State-sponsored actors may have been behind the social media abuse, said Twitter. more: https://threatpost.com/twitter-api-abused-to-uncover-identities/152521/ #socialmediacyberattack #socialmediasecurity #statesponsoredhack #twitterforandroid #twitterabuse #websecurity #cyberattack #twitterflaw #twitterapi #apiabuse #twitter #hacks #hack
Twitter API Abused to Uncover User Identities

State-sponsored actors may have been behind the social media abuse, said Twitter.

Threatpost - English - Global - threatpost.com