Security Exploit Case Study #6 Note: This series aims to analyze and simplify breach and vulnerability reports that are usually cryptic and mostly written by legal. The simplified version hopes to educate and help security and engineering leadership avoid the …

Security Breach Case Study #4 Note: This series simplifies and analyze breach/exploit details which are usually cryptic and legal led and to help other enterprises avoid the same mistake. Company: HealthEngine App: Feedback System Data Leaked: 59,000+ patient’s personally identifiable information. …

Security Breach Case Study #3 Note: This series simplifies and analyze breach/exploit reports which are usually cryptic and legal led and to help other enterprises avoid the same mistake. Hackers were able to acquire over 350K customer’s personal data from …

How API Access-Control vulnerabilities are exploited Access-Control vulnerabilities are incredibly commonplace in today's APIs. They're not hard to fix, but they're hard to continuously validate and keep in check as the code base, and features grow. Hackers love these weaknesses …

How did the Outlook email breach happen? According to Microsoft, one of its support agent's credentials were compromised, allowing individuals to gain unauthorized access to Microsoft email accounts. Initially, Microsoft said the breach might have allowed unauthorized parties to "access …

More and more data breaches and GDPR violations are caused by API vulnerabilities. Continuous API security scanning can help mitigate these risks to avoid the enormously high fines associated with such violations.