BOSTON, October 5, 2017 – Forum Systems Inc., a pioneer in API security technology, today announced the Orlando API Summit, the latest event in a series dedicated to examining the fundamentals of API security. … Read More
News & Events
Forum Sentry API Security Gateway protects all customers against Apache OptionsBleed
Apache Optionsbleed is yet another vulnerability in an ever-growing list of threats targeting REST-based back-end applications aimed at compromising server memory. In this case, it is Apache’s https program can be compromised by using HTTP method OPTIONS as described here: – https://nakedsecurity.sophos.com/2017/09/19/apache-optionsbleed-vulnerability-what-you-need-to-know/ – https://arstechnica.com/information-technology/2017/09/apache-bug-leaks-contents-of-server-memory-for-all-to-see-patch-now/ Forum Sentry protects against this attack … Read More
ITBusinessEdge: PAM Solutions: Critical to Securing Privileged Access
In this presentation, Jason Macy – CTO of Forum Systems, provides insight into best practices using a privileged access management (PAM) solution. PAM solutions are built from traditional Identity Access Management… However, these IAM solutions are designed only to establish … Read More
Cyberscoop: Instagram investigating larger breach
In this article, Jason Macy – CTO of Forum Systems, provides insight into the Instagram data breach This is the continuing saga of cloud and mobile applications being exposed by API development toolkits that do not have inherent API security capabilities … Read More
Instagram API Security – Too Little Too Late
The Instagram API vulnerability was exposed via a REST API used by the Instagram Mobile App to perform a password reset. By capturing the format that the Instagram App used to make the password reset, a brute force attack was then created to … Read More
API Security and MySQL — A match made in Hell
What do API Security and MySQL have in common? Not much one hopes, especially if you are responsible for implementing enterprise-wide API Security. When picking any security product, particularly an API Security Gateway, an enterprise should carefully evaluate the architecture and components … Read More
How to Secure APIs from HTTP Method Attacks
In this series on the Top 10 API threats and How to Prevent Them, Forum Systems shares security insights compiled over many years, delivering secure and reliable solutions for web services and API modernization initiatives. #3 How to Secure APIs from HTTP Method Attacks … Read More
