Two-Part Webinar Series
Review of API Breaches in H1 2022
On Demand Webinar Recordings
Webinar Recordings
This is a two-part webinar series on the global API breaches from H1 2022 that made the news. The first session described the breaches at a high level (recording below) and the second describes how to defend against them.
Episode one
As APIs become the preferred attack vector for attackers there has been an inevitable rise in the number of API-related breaches and vulnerabilities. Join Colin Domoney (42Crunch security researcher and curator of the APISecurity.io newsletter) to understand the root causes of some recent API vulnerabilities making the news. This first part of this webinar series will illuminate how easily APIs can be compromised, leading to a potentially devastating impact on organizations. Join Colin as he covers the following topics:
- Understanding of how the vulnerability occurred, and the potential impact.
- A detailed look at the underlying OWASP API security Top 10 flaw.
Episode two - August 10th 2022
The second part of this webinar series explores how to defend against common API security breaches covered in the first part of the series. Join Colin Domoney (42Crunch security researcher and curator of the APISecurity.io newsletter) to understand how to use defensive techniques to protect APIs. This practical and interactive webinar will illuminate how APIs can be protected against common attack types and real-world exploits.
Join Colin as he covers the following topics:
- Apply defensive coding practices to secure APIs from such vulnerabilities.
- Practical demonstration of how 42Crunch can detect and protect from such vulnerabilities.

Further Reading
Below you can download the OWASP API Security Top 10 data sheet, read a blog article from Pierrick Prévert,
and learn more about the 42Crunch API security platform!

The OWASP API Security Top 10
Data Sheet

"Lessons learned from the Spring4Shell vulnerability"

42Crunch API Security
Platform Data Sheet
Ready to Get Started?
Developer-first solution for delivering API security as code.