Security Boulevard

API Attack Awareness: Broken Object Level Authorization (BOLA) – Why It Tops the OWASP API Top 10

For this Cybersecurity Awareness Month, we thought it important to draw attention to some of the most common and dangerous API vulnerabilities.  This week, we’re starting with Broken Object Level ...

Get the OpenAI API Cookbook (worth $27.99) for free

This free to download eBook of OpenAI API fundamentals, covers setup, authentication, and key parameters, quickly progressing to the different elements of the OpenAI API.
DevPro Journal

Five critical API security flaws developers must avoid

Learn how you can implement essential best practices - from strict authorization to rate limiting - to secure APIs and ...
MyChesCo on MSN

Outpost24 Streamlines Cybersecurity With Unified Pen Test Reporting

Outpost24 has unveiled a new penetration test reporting capability that consolidates all testing results into a single ...
Crypto Briefing

CoinGecko launches API for crypto treasuries data access

CoinGecko Crypto Treasuries Holdings API offers developers access to real-time data on institutional and government crypto reserves.
The Hacker News

OneLogin Bug Let Attackers Use API Keys to Steal OIDC Secrets and Impersonate Apps

CVE-2025-59363 "allowed attackers with valid API credentials to enumerate and retrieve client secrets for all OIDC ...
InfoWorld

Build an authentication handler for a minimal API in ASP.NET Core

ASP.NET Core offers a simplified hosting model, called minimal APIs, that allows us to build lightweight APIs with minimal dependencies. However, “minimal” doesn’t mean minimal security. Minimal APIs ...
Financial IT

APIs Become Primary Target for Cybercriminals: Over 40,000 API Incidents in First Half of 2025

Thales has announced the findings of its latest API Threat Report (H1 2025), warning that APIs – the behind-the-scenes connectors powering apps, payments, and logins – have become the primary target ...