Security Boulevard

Everyone Knows About Broken Authorization – So Why Does It Still Work for Attackers?

Broken authorization is one of the most widely known API vulnerabilities.  It features in the OWASP Top 10, AppSec conversations, and secure coding guidelines. Broken Object Level Authorization (BOLA) ...
Tech Zone 360

The Difference Between Authentication and Authorization for API Security

Application Programming Interfaces (APIs) are the backbone of many services and applications, enabling different software to interact with each other seamlessly. However, with this increased ...
TechCrunch

Ex-Plaid employees raise $30M for Stytch, an API-first passwordless authentication platform

There are far fewer annoying things than managing one’s passwords. There are a bunch of companies out there to help you attempt to do that. And there’s also a number of companies that want to go a ...
Security Boulevard

Passwordless Authentication for WooCommerce with Adaptive MFA

Secure WooCommerce stores with passwordless login, adaptive MFA, and scalable authentication infrastructure for modern ecommerce applications.
Linux Journal

WebAuthn Web Authentication with YubiKey 5

A look at the recently released YubiKey 5 hardware authenticator series and how web authentication with the new WebAuthn API leverages devices like the YubiKey for painless website registration and ...
Forbes

The Case For Modernizing Authentication Methods

As much as our digital ecosystem has advanced in recent years, some elements of the security world have been slower to change. For example, a shortage of well-trained cybersecurity professionals has ...
The Next Web

5 authentication methods putting passwords to shame

There’s no arguing that passwords are becoming less and less reliable in protecting our data and identities. Their management, protection and memorization are becoming increasingly problematic, and ...