The Haunted House of APIs - The Dark Corners of APIs with Katie Paxton-Fear

Code Story: Insights from Startup Tech Leaders

Noah Labhart - Startup Founder & CTO

Tech News, News, Business, Technology, Entrepreneurship, Careers

4.6 • 216 Ratings

🗓️ 23 October 2024

⏱️ 17 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

The Haunted House of API's Today, we are releasing another episode for Cybersecurity Awareness month, in our series entitled the Haunted House of API’s, sponsored by our friends at Traceable AI. In this series, we are building awareness around API’s, their security risks – and what you can do about it. Traceable AI is building One Platform to secure every API, so you can discover, protect, and test all your API's with contextual API security, enabling organizations to minimize risk and maximize the value API's bring to their customers. The Dark Corners of APIs: Uncovering Unknown APIs Lurking in the Shadows Our episode today is titled The Dark Corners of APIs: Uncovering Unknown API’s lurking in the shadows, where we speak with Katie Paxton-Fear. APIs are the gateway to your digital infrastructure, but hidden deep in the recesses of your system are unknown APIs – shadow, rogue, zombie, and undocumented API’s. Each of these present a unique threat to your organization and can be exploited by hackers. Katie is an API hacker and researcher, and today, she will take us on a journey through the API graveyards, where hidden APIs lurk, waiting to be exploited – sharing real life examples of how these API’s have been attacked, and best practices for ensuring they don’t become your companies next security nightmare. Our Sponsors: * Check out Kinsta: https://kinsta.com * Check out Red Hat: https://www.redhat.com * Check out Vanta: https://vanta.com/CODESTORY Support this podcast at — https://redcircle.com/code-story/donations Advertising Inquiries: https://redcircle.com/brands Privacy & Opt-Out: https://redcircle.com/privacy

Transcript

Click on a timestamp to play from that location

0:00.0	Hello listeners. Today we are releasing another episode for Cyber Security Awareness Month as part of our series The Haunted House of APIs, sponsored by our friends Traceable.
0:14.1	In this series, we are building awareness around APIs, their security risks, and what you can do about it.
0:21.6	Traceable AI is building one platform to secure every API so you can discover, protect,
0:27.3	and test all your APIs with contextual security, enabling organizations to minimize risk
0:33.2	and maximize the value APIs bring to their customers.
0:38.1	Our episode today is titled The Dark Corners of APIs, Uncovering Unknown APIs Lurking in the Shadows,
0:45.0	where we speak with Katie Paxton Fear.
0:47.8	APIs are the gateway to your digital infrastructure, but hidden deep in the recesses of your system are unknown APIs. Shadow,
0:55.5	roads, zombie, undocumented. Each of these present a unique threat to your organization and
1:00.9	can be exploded by hackers. Katie is an API hacker and researcher, and today she will take
1:06.8	us on a journey through the API Graveyard, sharing best practices for ensuring that they
1:11.7	don't become your company's next security nightmare. Katie, thank you for being on the show today.
1:19.0	Thank you so much for having me. It's a pleasure to be here. Before we jump into our topic today,
1:23.9	which is the dark corners of APIs, uncovering unknown APIs lurking in the shadows,
1:29.9	super ominous, it gives me chills talking about it. Tell me a little bit about yourself. Tell me in my
1:34.9	audience a little bit about you. Hi, my name is Katie. I'm also known by my handle inside a PhD.
1:41.7	I am a cybersecurity YouTuber, a lecturer and an API hacker. I find the vulnerabilities
1:49.3	and APIs before the bad guys do, and then I go on YouTube and teach other people how to do
1:54.8	the same thing. I've found vulnerabilities in companies all over the world that you've definitely heard of that I can't
2:03.6	talk about because I've got an NDA, but there are certainly companies there. I have been to
2:09.7	tons of live hacking events. So that's where companies fly out some of the best hackers in the
2:15.8	world just to focus on their software.
	...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from Noah Labhart - Startup Founder & CTO, and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of Noah Labhart - Startup Founder & CTO and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.