Stopping Business Logic Attacks: Why a WAF is no Longer Enough - Karl Triebes - ASW #255 Image

Stopping Business Logic Attacks: Why a WAF is no Longer Enough - Karl Triebes - ASW #255

19 September 2023 - 1 hour 15 mins
Podcast Series Security Weekly Podcast Network (Audio)

The majority of attacks are now automated, with a growing number of attacks targeting business logic via APIs, which is unique to every organization. This shift makes traditional signature-based defenses insufficient to stop targeted business logic attacks on their own. In this discussion, Karl Triebes shares how flaws in business logic design can leave applications and APIs open to attack and what tools organizations need to effectively mitigate these threats.

This segment is sponsored by Imperva. Visit https://securityweekly.com/imperva to learn more about them!

In the news segment, a slew of XSS in Azure's HDInsights, CNCF releases fuzzing and security audits on Kyverno and Dragonfly2...

1 hour 15 mins

Series Episodes

Recently Updated
The CISO Holiday Party 2025: Leadership Lessons from the Year That Was - BSW #427

The CISO Holiday Party 2025: Leadership Lessons from the Year That Was - BSW #427

49 mins

24 December Finished

Play episode
Go to Series
Add to Queue
Holiday Special Part 1: You’re Gonna Click the Link - Rob Allen - SWN #540

Holiday Special Part 1: You’re Gonna Click the Link - Rob Allen - SWN #540

35 mins

23 December Finished

Play episode
Go to Series
Add to Queue
Modern AppSec: OWASP SAMM, AI Secure Coding, Threat Modeling & Champions - Sebastian Deleersnyder, Dustin Lehr, James Manico, Adam Shostack - ASW #362

Modern AppSec: OWASP SAMM, AI Secure Coding, Threat Modeling & Champions - Sebastian Deleersnyder, Dustin Lehr, James Manico, Adam Shostack - ASW #362

1 hour 7 mins

23 December Finished

Play episode
Go to Series
Add to Queue
Internal threats are the hole in Cybersecurity’s donut - Frank Vukovits - ESW #438

Internal threats are the hole in Cybersecurity’s donut - Frank Vukovits - ESW #438

1 hour 57 mins

22 December Finished

Play episode
Go to Series
Add to Queue
Auld Lang Syne, Ghostpairing, Centerstack, WAFS, React2Shell, Crypto, Josh Marpet... - SWN #539

Auld Lang Syne, Ghostpairing, Centerstack, WAFS, React2Shell, Crypto, Josh Marpet... - SWN #539

32 mins

19 December Finished

Play episode
Go to Series
Add to Queue
With AI Nothing Is Safe - PSW #905

With AI Nothing Is Safe - PSW #905

2 hours 13 mins

18 December Finished

Play episode
Go to Series
Add to Queue

Recommended

View more
Your Vote Matters - A Beat News Referendum Special
Brand

Your Vote Matters - A Beat News Referendum Special

Podcast Series

Voice of the Future
Brand

Voice of the Future

Podcast Series

The Road To Who Knows Where
Brand

The Road To Who Knows Where

Podcast Series

The Afters
Brand

The Afters

Podcast Series

Medicinal or Hurtful? A Beat News Documentary on Drug Regulation in Ireland
Brand

Medicinal or Hurtful? A Beat News Documentary on Drug Regulation in Ireland

Podcast Series

Living Your Best Life
Brand

Living Your Best Life

Podcast Series

From Conflict to Safety: Ukrainian Refugees Living in Wexford
Brand

From Conflict to Safety: Ukrainian Refugees Living in Wexford

Podcast Series

Fees Degrees but No Keys
Brand

Fees Degrees but No Keys

Podcast Series

On The Run: The Inside Story
Brand

On The Run: The Inside Story

Podcast Series

Cillian chats to Protein Bor Papi on The Takeover
Brand

Cillian chats to Protein Bor Papi on The Takeover

Podcast Series

Do You Remember?
Brand

Do You Remember?

Podcast Series

The Weekly Show with Jon Stewart
Brand

The Weekly Show with Jon Stewart

Podcast Series

Brothers In Arms
Brand

Brothers In Arms

Podcast Series

Home or Away - Living the Irish Australian Dream with Aisling Moloney
Brand

Home or Away - Living the Irish Australian Dream with Aisling Moloney

Podcast Series

Eoin Sheahan's Diverted
Brand

Eoin Sheahan's Diverted

Podcast Series

Wexford Soccer: The Heart Of The Community
Brand

Wexford Soccer: The Heart Of The Community

Podcast Series

On The Move
Brand

On The Move

Podcast Series

Nobody Told Me
Brand

Nobody Told Me

Podcast Series

Show name

Title

Sub title

Now Playing

The Pat Kenny Show

Live Now: 9AM - 12PM

Presenter logo
Brand

9AM

12AM

Now Playing

The Pat Kenny Show

The Pat Kenny Show

Of The Ball

1 hour left

Today Finished

Go to Series

Next Up

Default

Default

default

0 mins

No Account

Subscriptions to podcast series are only available to users with an account. Sign in or register to subscribe and access your subscriptions.

Register Sign in

Woops!

Error text.