The 12th post in the 2023 OWASP API Security Top-10 series focuses on Injection, a critical part of API security once categorized separately (OWASP API8:2019) but now included in OWASP API10:2023 (Unsafe Consumption of APIs). Injection involves inserting malicious data or code into APIs, posing significant risks such as unauthorized access and data breaches. The series recommends several security measures to prevent API injection attacks, including input validation, parameterized queries, rate limiting, and regular patching.
German authorities want your help finding the hackers behind GandCrab and REvil
Daniil Maksimovich Shchukin and Anatoly Sergeevitsch Kravchuk are believed to have made millions from ransomware as a service schemes
