ZDNet

GraphQL API authorization flaw found in major B2B financial platform

Cybersecurity firm Salt Labs discovered a GraphQL API authorization vulnerability in a large B2B financial technology platform. It would give attackers the ability to submit unauthorized transactions ...
ITWire

How to protect popular query language GraphQL APIs from exploits

GUEST OPINION: Many companies, including GitHub, Credit Karma, Intuit and PayPal use GraphQL, which is a query language for application programming interfaces and a runtime for fulfilling queries with ...
InfoWorld

Understanding GraphQL engine implementations

Among the many ways of implementing a GraphQL engine, only one approach offers the same performance, scalability, and ACID guarantees as the underlying database. When we talk about advantages of ...
Dark Reading

Emerging Security Tools Tackle GraphQL Security

One good thing about GraphQL is that the query language makes it easy to interact with structured data and perform multiple actions with a single API call. However, that same flexibility makes APIs ...
Computer Weekly

API series – Inigo: With GraphQL power comes… developer responsibility for API security

The latest trends in software development from the Computer Weekly Application Developer Network. Developers are increasingly flocking to GraphQL to overcome REST API shortcomings. Skillfully wielding ...
Computer Weekly

GraphQL as an ‘essential protocol’ for AI-API orchestration

The latest trends in software development from the Computer Weekly Application Developer Network. A new product will establish the graph-based industry standard for secure, orchestrated access to APIs ...