Request a Demo

Webinar

Secure Your Apps from Four Common API Attacks

Recorded on February 25, 2021

APIs will account for 90% of attack surface area for web applications this year1. Developers and attackers gravitate towards APIs for similar reasons: they’re flexible, suited for automation, and exchange critical data.

As API footprint and functionality grows, so does their appeal to attackers. Proactive API protection must be a key priority in your application security strategy.

Security experts Jimmy Mesta and Rob Gibson will demonstrate tactics to stop four common API threats:

  • Account takeover (ATO)
  • Enumeration
  • Content scraping and probing
  • HTTP verb tampering

Watch now to learn how to strengthen your API security!

About the presenters

Jimmy Mesta

Head of Security Research, Fastly

Jimmy Mesta is a veteran application and infrastructure security leader with 15+ years of experience. He has spent time on both the offensive and defensive sides of the industry, working to build modern, developer-friendly security solutions. Prior to Signal Sciences, Jimmy maintained a global network, consulting with companies, and delivering technical security training, research, and infrastructure around the world. He previously ran the local Santa Barbara OWASP chapter and taught Kubernetes, Docker, DevOps, mobile security, and pentesting courses for Manicode. Follow Jimmy on Twitter @jimmesta.

Rob Gibson

Product Manager, Fastly

Rob Gibson is product manager for defense experience at Signal Sciences, now part of Fastly. Prior to that, Rob worked at Symantec where he focused on Norton consumer security, mobile security, and identity access management (IAM). He has an MBA from UCLA Anderson School of Management.

Liz Hurder

Product Marketing Manager, Fastly

Liz is a product marketing manager (PMM) for security products at Fastly. Prior to Fastly, Liz was a PMM at Signal Sciences up to its acquisition. Her career in product marketing has spanned multiple security companies across web application, cloud, and endpoint protection.