lingo.lol is one of the many independent Mastodon servers you can use to participate in the fediverse.
A place for linguists, philologists, and other lovers of languages.

Server stats:

66
active users

#apisecurity

0 posts0 participants0 posts today
Tanya Janca | SheHacksPurple :verified: :verified:<p>I'm giving a paid workshop on the <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OWASP</span></a> <a href="https://infosec.exchange/tags/APISecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>APISecurity</span></a> Top Ten with AntiSyphon training on September 19th, with a ranging pay scale. Check it out here: </p><p><a href="https://twp.ai/4inqlb" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">twp.ai/4inqlb</span><span class="invisible"></span></a></p>
LMG Security<p>Non-Human Identities: The Hidden Risk in Your Stack</p><p>Non-human identities (NHIs)—like API keys, service accounts, and OAuth tokens—now outnumber human accounts in many enterprises. But are you managing them securely? With 46% of organizations reporting compromises of NHI credentials just this year, it’s clear: these powerful, often-overlooked accounts are the next cybersecurity frontier.</p><p>Read The Hacker News article for more details: <a href="https://thehackernews.com/2025/06/the-hidden-threat-in-your-stack-why-non.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thehackernews.com/2025/06/the-</span><span class="invisible">hidden-threat-in-your-stack-why-non.html</span></a></p><p><a href="https://infosec.exchange/tags/IdentitySecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IdentitySecurity</span></a> <a href="https://infosec.exchange/tags/CyberRisk" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberRisk</span></a> <a href="https://infosec.exchange/tags/APIsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>APIsecurity</span></a> <a href="https://infosec.exchange/tags/NHIs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NHIs</span></a> <a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://infosec.exchange/tags/IAM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IAM</span></a> <a href="https://infosec.exchange/tags/CISO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CISO</span></a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://infosec.exchange/tags/MachineIdentities" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MachineIdentities</span></a> <a href="https://infosec.exchange/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ZeroTrust</span></a> <a href="https://infosec.exchange/tags/RiskManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RiskManagement</span></a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Infosec</span></a> <a href="https://infosec.exchange/tags/IT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IT</span></a> <a href="https://infosec.exchange/tags/ITsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsecurity</span></a></p>
Marco Ciappelli🎙️✨:verified: :donor:<p>🚀 New Brand Story from <a href="https://infosec.exchange/tags/RSAC2025" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RSAC2025</span></a>: Runtime Protection at the New Digital Front Line</p><p>At <a href="https://infosec.exchange/tags/RSAC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RSAC</span></a> Conference 2025, Sean Martin, CISSP sat down with Rupesh Chokshi, Senior Vice President and GM of Application Security at Akamai Technologies, to talk about how AI-driven applications and <a href="https://infosec.exchange/tags/APIs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>APIs</span></a> are reshaping the security landscape.</p><p>🔐 Why are runtime attacks on APIs and <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AI</span></a> apps growing—and why is prevention alone no longer enough?</p><p>Find out how Akamai is evolving its Web Application and API Protection (<a href="https://infosec.exchange/tags/WAAP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WAAP</span></a>) strategies to meet these emerging threats head-on.</p><p>🎙️ Watch, listen, or read the full story here:<br>👉 <a href="https://www.itspmagazine.com/their-stories/the-new-front-line-runtime-protection-for-ai-and-api-driven-attacks-a-brand-story-with-rupesh-chokshi-from-akamai-an-on-location-rsac-conference-2025-brand-story" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">itspmagazine.com/their-stories</span><span class="invisible">/the-new-front-line-runtime-protection-for-ai-and-api-driven-attacks-a-brand-story-with-rupesh-chokshi-from-akamai-an-on-location-rsac-conference-2025-brand-story</span></a></p><p><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a> <a href="https://infosec.exchange/tags/apisecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>apisecurity</span></a> <a href="https://infosec.exchange/tags/technology" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>technology</span></a> <a href="https://infosec.exchange/tags/infosecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosecurity</span></a></p>
Marco Ciappelli🎙️✨:verified: :donor:<p>🌐 The Digital Terrain Is Shifting — Are Your Apps and APIs Ready?</p><p>As AI adoption accelerates, so do AI-driven attacks.<br>In their new research report, Akamai Technologies uncovers the evolving threats facing web applications and APIs — and how organizations can respond before attackers get ahead.</p><p>State of Apps and API Security 2025: How <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AI</span></a> Is Shifting the Digital Terrain explores the sharp rise in automated, intelligent threats — and the new defenses emerging to meet them.</p><p>📥 Download the full report here: <a href="https://itspm.ag/akamaixmwd" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">itspm.ag/akamaixmwd</span><span class="invisible"></span></a><br>📌 Research like this helps <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> professionals, <a href="https://infosec.exchange/tags/leaders" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>leaders</span></a>, and <a href="https://infosec.exchange/tags/developers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>developers</span></a> stay ahead of the curve — and shape the future of <a href="https://infosec.exchange/tags/digital" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>digital</span></a> defense.</p><p>🎙️ We’re also proud to feature Akamai in our RSAC 2025 coverage — with a Brand Story recorded pre-event and a follow-up conversation happening on location at the conference in San Francisco with Rupesh Chokshi, Sean Martin, CISSP, and Marco Ciappelli.</p><p>Watch the pre-event recording here: <a href="https://youtu.be/DMm6INJ_2Z8" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">youtu.be/DMm6INJ_2Z8</span><span class="invisible"></span></a> </p><p>🙏 A huge thank you to the Akamai team for sponsoring our coverage and sharing their insights with our global audience.</p><p>👇 Check out the report and stay tuned for more from RSAC:</p><p>📥 Download the Report: <a href="https://itspm.ag/akamaixmwd" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">itspm.ag/akamaixmwd</span><span class="invisible"></span></a><br>🌐 Explore our RSAC 2025 Coverage: <a href="https://www.itspmagazine.com/events/rsac-2025" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">itspmagazine.com/events/rsac-2</span><span class="invisible">025</span></a></p><p><a href="https://infosec.exchange/tags/akamai" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>akamai</span></a> <a href="https://infosec.exchange/tags/rsac2025" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>rsac2025</span></a> <a href="https://infosec.exchange/tags/brandstory" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>brandstory</span></a> <a href="https://infosec.exchange/tags/apigateway" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>apigateway</span></a> <a href="https://infosec.exchange/tags/applicationsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>applicationsecurity</span></a> <a href="https://infosec.exchange/tags/aiinsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>aiinsecurity</span></a> <a href="https://infosec.exchange/tags/webappsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>webappsecurity</span></a> <a href="https://infosec.exchange/tags/cybersecurityresearch" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurityresearch</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>devsecops</span></a> <a href="https://infosec.exchange/tags/digitaldefense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>digitaldefense</span></a> <a href="https://infosec.exchange/tags/threatintelligence" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>threatintelligence</span></a> <a href="https://infosec.exchange/tags/itspmagazine" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>itspmagazine</span></a> <a href="https://infosec.exchange/tags/rsaconference" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>rsaconference</span></a> <a href="https://infosec.exchange/tags/apisecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>apisecurity</span></a> <a href="https://infosec.exchange/tags/aiattacks" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>aiattacks</span></a> <a href="https://infosec.exchange/tags/securityreport" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securityreport</span></a> <a href="https://infosec.exchange/tags/cybersecurityinnovation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurityinnovation</span></a> <a href="https://infosec.exchange/tags/securitystrategy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securitystrategy</span></a> <a href="https://infosec.exchange/tags/zerotrust" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>zerotrust</span></a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a></p>
LMG Security<p>China-Linked Silk Typhoon Expands Cyber Attacks to IT Supply Chains</p><p>The Silk Typhoon hacking group, linked to China and previously behind Microsoft Exchange zero-day attacks, is now targeting IT supply chains, abusing stolen API keys, remote management tools, and cloud applications to infiltrate corporate networks.</p><p>The group is exploiting stolen API keys and credentials from IT service providers, launching zero-day attacks on Ivanti VPN, Palo Alto Networks, and Citrix NetScaler, and shifting from on-prem environments to cloud applications like Microsoft 365, OneDrive, and SharePoint to exfiltrate data.</p><p>Organizations must strengthen API security, enforce least privilege access, and monitor cloud environments to mitigate these growing supply chain threats.</p><p>Read more: <a href="https://thehackernews.com/2025/03/china-linked-silk-typhoon-expands-cyber.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thehackernews.com/2025/03/chin</span><span class="invisible">a-linked-silk-typhoon-expands-cyber.html</span></a></p><p><a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://infosec.exchange/tags/SupplyChainSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SupplyChainSecurity</span></a> <a href="https://infosec.exchange/tags/CloudSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudSecurity</span></a> <a href="https://infosec.exchange/tags/ThreatIntelligence" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntelligence</span></a> <a href="https://infosec.exchange/tags/ChinaAPT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ChinaAPT</span></a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Infosec</span></a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/DFIR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DFIR</span></a> <a href="https://infosec.exchange/tags/APIsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>APIsecurity</span></a></p>
Sam Stepanyan :verified: 🐘<p><a href="https://infosec.exchange/tags/Docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Docker</span></a> Fixes Critical 5-year Old Authentication Bypass <a href="https://infosec.exchange/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Vulnerability</span></a> CVE-2024-41110 (CVSS:10.0) allows attacker to login by sending an API request with a Content-Length of 0!<br><a href="https://infosec.exchange/tags/APISecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>APISecurity</span></a><br>👇 <br><a href="https://www.bleepingcomputer.com/news/security/docker-fixes-critical-5-year-old-authentication-bypass-flaw/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bleepingcomputer.com/news/secu</span><span class="invisible">rity/docker-fixes-critical-5-year-old-authentication-bypass-flaw/</span></a></p>
App Sec Village<p>Join us at Defcon this August for a plethora of activities!</p><p>We're looking for speakers for our POD (Practical On-Demand) Activities, Arsenals and Ask Me Anything (AMA) programs.</p><p>For all the deets and to share your <a href="https://defcon.social/tags/sessionsuggestions" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sessionsuggestions</span></a>, visit <a href="https://sessionize.com/appsec-village-dc31/" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="ellipsis">sessionize.com/appsec-village-</span><span class="invisible">dc31/</span></a> </p><p><a href="https://defcon.social/tags/callforspeakers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>callforspeakers</span></a> <a href="https://defcon.social/tags/dc31" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dc31</span></a> <a href="https://defcon.social/tags/defcon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>defcon</span></a> <a href="https://defcon.social/tags/defcon31" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>defcon31</span></a> <a href="https://defcon.social/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a> <a href="https://defcon.social/tags/applicationsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>applicationsecurity</span></a> <a href="https://defcon.social/tags/appsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsecurity</span></a> <a href="https://defcon.social/tags/apisecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>apisecurity</span></a></p>
App Sec Village<p>Congratulations to Gabrielle Botbol on the acceptance of her talk to AppSec Village at Defcon</p><p>Gabrielle, we're looking forward to having you on stage this August! Can't wait! 🎉🎤 </p><p><a href="https://defcon.social/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a> <a href="https://defcon.social/tags/applicationsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>applicationsecurity</span></a> <a href="https://defcon.social/tags/appsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsecurity</span></a> <a href="https://defcon.social/tags/apisecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>apisecurity</span></a> <a href="https://defcon.social/tags/dc31" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dc31</span></a> <a href="https://defcon.social/tags/defcon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>defcon</span></a> <br><a href="https://defcon.social/tags/DEFCON31" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DEFCON31</span></a></p>
App Sec Village<p>It takes a village to run a village. We are looking for volunteers to help us bring AppSec Village at DEF CON 31 to life. </p><p>Learn more <a href="https://www.appsecvillage.com/volunteer" rel="nofollow noopener" target="_blank"><span class="invisible">https://www.</span><span class="">appsecvillage.com/volunteer</span><span class="invisible"></span></a> </p><p><a href="https://defcon.social/tags/dc31" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dc31</span></a> <a href="https://defcon.social/tags/defcon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>defcon</span></a> <a href="https://defcon.social/tags/defcon31" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>defcon31</span></a> <a href="https://defcon.social/tags/appsecvolunteers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsecvolunteers</span></a><br><a href="https://defcon.social/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a> <a href="https://defcon.social/tags/applicationsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>applicationsecurity</span></a> <a href="https://defcon.social/tags/appsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsecurity</span></a> <a href="https://defcon.social/tags/apisecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>apisecurity</span></a></p>
Eden 💀 Chaos Wrangler<p>ICYMI Our <span class="h-card"><a href="https://defcon.social/@defcon" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>defcon</span></a></span> <a href="https://defcon.social/tags/callforpapers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>callforpapers</span></a> is now open at the <span class="h-card"><a href="https://defcon.social/@AppSecVillage" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>AppSecVillage</span></a></span>!! buff.ly/3KriXI6 We can't wait to see your ideas for workshops, panels, hands-on activities, etc by May 14. <a href="https://defcon.social/tags/callforspeakers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>callforspeakers</span></a> <a href="https://defcon.social/tags/cfp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cfp</span></a> <a href="https://defcon.social/tags/cfs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cfs</span></a> <a href="https://defcon.social/tags/dc31" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dc31</span></a> <a href="https://defcon.social/tags/defcon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>defcon</span></a> <a href="https://defcon.social/tags/defcon31" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>defcon31</span></a> <a href="https://defcon.social/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a> <a href="https://defcon.social/tags/apisecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>apisecurity</span></a></p>
Dana Epp :donor: :verified:<p>Changes are coming to the OWASP API Security Top 10. Check out this article to find out what might affect you and your API security testing.</p><p><a href="https://danaepp.com/owasp-api-security-top-10-upcoming-changes-you-need-to-know-about" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="ellipsis">danaepp.com/owasp-api-security</span><span class="invisible">-top-10-upcoming-changes-you-need-to-know-about</span></a></p><p><a href="https://infosec.exchange/tags/owasp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>owasp</span></a> <a href="https://infosec.exchange/tags/apisecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>apisecurity</span></a> <a href="https://infosec.exchange/tags/apitesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>apitesting</span></a></p>
:mastodon: Mike Amundsen<p>“Security teams must shift their focus from “How do we make sure Jill isn’t granted too many permissions in AWS?” to “Do we know the identity of the machines that have API access and do we trust them?”” <a href="https://b.mamund.com/3LOejEq" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="">b.mamund.com/3LOejEq</span><span class="invisible"></span></a></p><p><a href="https://mastodon.social/tags/api360" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>api360</span></a> <a href="https://mastodon.social/tags/apiSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>apiSecurity</span></a></p>