Cloud Security, Identity

Compromised API-related breaches on the rise

VentureBeat reports that network and app data breaches stemming from compromised API tokens have been experienced by 53% of more than 400 security and engineering professionals. Moreover, 86% of respondents reported allocating up to 15 hours a week for API secrets provisioning and management, according to a report from Corsha. The findings indicate the growing need for scalability in managing API secrets to ensure hybrid cloud environments' defenses against different cyber threats. Securing API secrets has been increasingly important amid the exponential growth of APIs, as well as automated pipelines and microservices in recent years, said Corsha CEO Anusher Iyer. "Secrets management is vital to the security of who and what is accessing your APIs. For many organizations, its the best way to safeguard their secrets in a secure, automated fashion, while also maintaining the hygiene needed to minimize any risk that might be associated with leaked and compromised credentials," said Iyer.

Related

LockBit-leaked DC city agency data from third party

Washington, D.C.'s Department of Insurance, Securities and Banking has disclosed that 800GB of data claimed to have been stolen by the LockBit ransomware operation was obtained from an attack against third-party software provider Tyler Technologies following the ransomware gang's threats to expose 1GB of the exfiltrated data to coerce the agency into providing the demanded ransom, reports The Record, a news site by cybersecurity firm Recorded Future.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.