API Security

API Security: Top Tips, Best Practices, and Strategies

Eric Schlesener — Fri, 19 Dec 2025 19:47:43 GMT

APIs handle more sensitive data than most security teams realize. They now connect nearly every system, service, and user in the modern enterprise. They power SaaS integrations, automate workflows, and enable AI features. But, they also expand the attack surface with every new connection. In fact, 84% of organizations experienced at least one API‑related security incident last year (451 Research).

Vorlon’s Perspective on the Gartner Report: Adapt Your Third-Party API Security to 3 Specific Use Cases

elias.terman@vorlonsecurity.com (Elias Terman) — Mon, 18 Nov 2024 18:43:51 GMT

Two days after I joined Vorlon Security as their VP of Marketing, Gartner included Vorlon as a representative vendor in their report: Adapt Your Third-Party API Security to 3 Specific Use Cases. That’s a nice gift for a new VP of Marketing because third-party API security use cases are less understood than first-party ones. For the latter (the APIs you publish), we recommend Salt Security.

The API Security Checklist: What to Review Before Integrating a Third-Party API

Mahima Kulkarni — Wed, 09 Oct 2024 18:11:19 GMT

Integrating third-party APIs into your application can significantly boost functionality and efficiency. However, without proper security evaluation, these APIs can introduce risks that may expose sensitive data, compromise user privacy, or allow unauthorized access. To protect your organization and its data, it’s essential to have a thorough review process in place before integrating any external API.

Internal vs. Third-Party APIs: Who Would Win in a Fight!?

Mahima Kulkarni — Fri, 04 Oct 2024 17:00:00 GMT

On the digital battlefield where APIs (Application Programming Interfaces) reign supreme, knowing the strengths and weaknesses of internal versus third-party APIs is crucial for any tech-savvy organization aiming to secure its operations. This blog will dive into the defining characteristics of both internal and third-party APIs, comparing their performance in the arena of security and efficiency, and demonstrating how Vorlon offers strategic advantages in monitoring third-party APIs to mitigate risks. Who would win in a fight? Let’s find out.

10 Questions to Ask About API Activity

Lauren Lee — Wed, 28 Feb 2024 17:30:00 GMT

Unveiling the Mysteries of API Logs: A Must-Read White Paper

APIs (Application Programming Interfaces) stand at the heart of digital communication, enabling software applications to interact seamlessly. However, as the reliance on APIs grows, so does the complexity of monitoring and securing these crucial channels. Understanding the intricacies of API activity is more critical than ever, which is why our latest white paper, "10 Questions to Ask About API Activity," is an essential read for anyone navigating the landscape of API activity.

I Scream, You Scream, We All Scream For IOCs

Lauren Lee — Wed, 24 Jan 2024 17:00:00 GMT

Introduction

APIs (Application Programming Interfaces) have become both invaluable assets and potential targets for cyber attacks. As these interfaces facilitate critical data exchange between different software applications, they also present unique vulnerabilities.

Jingle Bells, Your API Smells.... | Vorlon Blog: Bite sized breaches

Lauren Lee — Wed, 13 Dec 2023 08:00:00 GMT

In the festive season, our reliable Application Programming Interfaces (APIs) have their own holiday wishlist. All year round, we count on them for seamless connectivity and smooth functionality. They're the heroes of our organizations, working tirelessly behind the scenes to keep our systems and services interconnected. So, as we celebrate and spread cheer, let’s also acknowledge the wishes of our hardworking APIs, hoping to make their tasks a little easier and more secure in the coming year!

Securing Your APIs in the Evolving Landscape of API Traffic

Lauren Lee — Wed, 09 Aug 2023 22:18:00 GMT

Introduction

APIs (Application Programming Interfaces) have become a vital component of modern technology. However, with their increased adoption, APIs have unfortunately become a prime target for cyber attackers. Understanding the dynamic landscape of API traffic and incorporating insights from recent studies, this article delves into the challenges faced by APIs and the essential steps to secure your APIs.

Mastering API Token Management: Best Practices for Security and Efficiency | Vorlon Blog: Bite sized breaches

Lauren Lee — Fri, 30 Jun 2023 07:00:00 GMT

Introduction:

In the world of modern applications, API tokens are the linchpins that hold everything together. They are the small but mighty strings of characters that facilitate smooth communication and integration between different software. But like any tool, if they're misused or mismanaged, these API tokens can open up a Pandora's box of security vulnerabilities and operational hiccups. That's why it's essential to have robust practices in place for managing these tokens, striking a balance between top-tier security and operational efficiency.

Finding the Balance: The Pros and Cons of Automation | Vorlon Blog: Bite sized breaches

Lauren Lee — Thu, 29 Jun 2023 07:00:00 GMT

Finding the Balance: The Pros and Cons of Automation

‍