Get the big picture on Non-Human Identities (NHIs)—check out our infographic to understand the challenges and best practices

Blog

Sisense Breach Shows Danger of Third Party “Forever” Tokens
API Secrets,
MFA

Sisense Breach Shows Danger of Third Party “Forever” Tokens

By Chris Parlette
on April 25, 2024
The recent breach at Sisense started with an AWS access token to a Gitlab repository and has led to all Sisense customers having to rotate any access token they’ve ever given to Sisense. While most headline-grabbing breaches involve personal information, the...
Read More
How the Darknet Informs API Security Tactics
authentication,
API Secrets,
MFA

How the Darknet Informs API Security Tactics

Corsha
By Corsha
on July 25, 2023
Do you know what goes on in the darknet? Well, your API security could be at stake. DarkOwl, a leading provider of darknet data, has observed conversations on the darknet on topics including hacking APIs, stolen API secrets that are then traded in underground digital...
Read More
Robust API Security Standards Are Essential for Your Security Strategy
authentication,
API Secrets,
zero trust

Robust API Security Standards Are Essential for Your Security Strategy

Corsha
By Corsha
on June 06, 2023
Gartner projects that cybersecurity spending will grow by 11.3% in 2023 to more than $188.3 billion. Yet, many companies still leave their most vulnerable and most valuable resource unprotected against modern threats.
Read More
JSON Web Tokens 101
API Secrets

JSON Web Tokens 101

Corsha
By Corsha
on May 22, 2023
If you work with any kind of tech, chances are that you’ve heard of (and used) JSON web tokens. While using JSON web tokens is now almost ubiquitous with machine-to-machine (M2M) communications, it can be easy to take them for granted.
Read More
How to Bullet-proof API Security to Keep API Secrets Safe
API Secrets,
secrets management

How to Bullet-proof API Security to Keep API Secrets Safe

Corsha
By Corsha
on May 08, 2023
Organizations are leveraging APIs more than ever. In 2021, 90.5% of developers said they will expand their use of APIs. Organizations also planned to spend around $23.6 million on APIs and other related technologies in 2022.
Read More
Corsha Survey Report: 50% of Security Respondents Have Experienced API-Related Breach – 50% Worry About One
authentication,
certificates,
API Secrets,
keys,
breach,
API Gateways,
secrets management

Corsha Survey Report: 50% of Security Respondents Have Experienced API-Related Breach – 50% Worry About One

Corsha
By Corsha
on January 19, 2023
Many security professionals have a problem with API secrets management practices. In fact, 50% of security professionals have experienced an API-related breach, while the other 50% worry about having one. This statistic is important to acknowledge because it clearly...
Read More
API Security Myth: The Bearer Model Is Enough
authentication,
API Secrets,
bearer model,
API Gateways

API Security Myth: The Bearer Model Is Enough

Corsha
By Corsha
on January 06, 2023
There’s a big problem with the bearer model. Let's explore where, why, and how the bearer model falls short when it comes to defending APIs from modern threats.
Read More
What We Can Learn From Toyota’s API Security Breach
API Secrets,
breach

What We Can Learn From Toyota’s API Security Breach

Corsha
By Corsha
on December 28, 2022
In January 2022, Gartner analysts predicted that API security would become a significant cybersecurity threat. And we’ve seen time and time again that that prediction was correct.
Read More
The API Secret Problem: How Companies are Spraying, Sprawling and Leaking Their Way Into Headlines
authentication,
API Secrets,
keys

The API Secret Problem: How Companies are Spraying, Sprawling and Leaking Their Way Into Headlines

Corsha
By Corsha
on September 15, 2022
Over the course of the last few years there has been a steady increase in the number of data breaches resulting from compromised API keys. Bad actors seem to be able to quite easily get ahold of API keys, certificates and tokens in order to access sensitive data. These...
Read More

Get started today

Reach out today to request a demo

Request a Demo
Contact Us