Tag feed

#api-security

187 posts60 followers

Trending tags this week

OZOliver Zehentleitnerblog.technopathy.club

When IP Whitelisting Isn't What It Seems: A Real-World Case Study from the Binance API

3d ago · 10 min read · A case study on how Binance's listenKey design bypasses IP whitelisting, why Bugcrowd dismissed it, and what this teaches us about API security in 2025. Update (2026-04-20): This article was original

Join discussion

CCyberFreak999cyberfreak.hashnode.dev

0

API Authentication Explained(Part 3): API Gateway Architecture & Trust Boundaries

3d ago · 6 min read · A system can use OAuth. It can issue signed tokens. It can even validate them correctly. And still get breached. Why? Because security doesn’t fail at authentication — it fails at trust boundaries. Mo

Join discussion

ABAsrar Balaasrarbala.hashnode.dev

0

How QA Engineers Detect BOLA and Sensitive Data Exposure in API Security Testing

4d ago · 3 min read · Introduction API security is a critical aspect of modern applications. One of the most common and severe issues is improper authorization, often categorized under Broken Object Level Authorization (BO

Join discussion

FFetchLogicfetchlogic.hashnode.dev

0

The $54,000 Bill That Exposed Google's API Security Blindspot

5d ago · 8 min read · The bill arrived at 9:47 AM on a Tuesday. Thirteen hours of compute time. $54,385.87 in Gemini API charges. The developer who received it had been asleep for most of the attack. \n\nWhat happened next wasn't the standard ritual of cloud billing horro...

Join discussion

CCuritycurity.io

0

API Security Trends 2026

Apr 13 · 5 min read · Looking back at Nordic API’s Platform Summit that took place last October, 2025 was the year of AI and MCP. Both will remain hot topics to a great extent even in 2026, and they already bring some good

Join discussion

GVGaurav Vishwakarmablogs.gaurav.one

1

Implementing Robust Non-Human Identity Management for Secure Web Services in 2025

Apr 10 · 6 min read · The digital landscape of 2025 is a complex tapestry woven from interconnected services, APIs, and microservices. Your web applications no longer just interact with human users; they constantly communicate with a vast, invisible ecosystem of non-human...

AArchit commented

AWAndrew Williamsficodeapi.hashnode.dev

0

API Security Best Practices: How to Protect Your Integrations in 2026

Apr 9 · 5 min read · APIs have become the backbone of modern applications. Whether it’s connecting payment gateways, syncing data between platforms, or enabling third-party services, APIs make everything work together sea

Join discussion

Aarunadevquaters.hashnode.dev

0

Security in Mobile App Development: What Founders Get Wrong

Apr 6 · 4 min read · Most founders think security is something you “add later.”That mindset is exactly why apps get breached, users lose trust, and startups lose momentum overnight. Security isn’t a feature. It’s your fou

Join discussion

TCThankGod Chibugwum Oboboactocodes.hashnode.dev

0

Secure Error Handling in APIs: How to Implement Global Filters and Prevent Sensitive Data Leaks

Apr 5 · 7 min read · Error handling is one of the most overlooked attack surfaces in API security. While developers focus on authentication, authorization, and input validation, a poorly configured error response can sile

Join discussion

NBNishil Bhavenishilbhave.hashnode.dev

0

How Do You Secure an API? The 4-Layer Framework That Actually Works

Mar 29 · 13 min read · How Do You Secure an API? The 4-Layer Framework That Actually Works APIs are the backbone of every modern application — and the most common entry point for attackers. Most developers bolt security on as an afterthought: one middleware, one config fla...

Join discussion

#api-security

Search Hashnode

#api-security

Trending tags this week

When IP Whitelisting Isn't What It Seems: A Real-World Case Study from the Binance API

API Authentication Explained(Part 3): API Gateway Architecture & Trust Boundaries

How QA Engineers Detect BOLA and Sensitive Data Exposure in API Security Testing

The $54,000 Bill That Exposed Google's API Security Blindspot

API Security Trends 2026

Implementing Robust Non-Human Identity Management for Secure Web Services in 2025

API Security Best Practices: How to Protect Your Integrations in 2026

Security in Mobile App Development: What Founders Get Wrong

Secure Error Handling in APIs: How to Implement Global Filters and Prevent Sensitive Data Leaks

How Do You Secure an API? The 4-Layer Framework That Actually Works