Overview
Explore
Partners
26 results found
MITRE ATT&CK vs. Cybersecurity Kill Chain: A Simple Breakdown
In the third installment of the "Grizzled CyberVet: Practical Cybersecurity" collection, we compare and contrast the Cybersecurity Kill Chain and MITRE ATT&CK Framework.
Accelerating Kubernetes Ingress and Security Automation with F5 and WWT
This blog highlights automated deployment patterns of F5 NGINX Ingress Controller paired with F5 NGINX App Protect across Amazon Web Services, Google Cloud Platform and Microsoft Azure.
The MITRE ATT&CK Framework: A Beginner's Guide
As part of the "Grizzled CyberVet: Practical Cybersecurity" collection, we examine the MITRE ATT&CK framework. We simplify and explain this framework used by attackers to compromise your digital ecosystem.
Security vs. Privacy, the Difference is Epic
Cyber teams need to understand the difference between security and privacy and apply them to every system in production.
Harness the Power of Azure with NGINXaaS – Advanced Load Balancing and API Gateway
This blog explains how modern, API-driven applications demand cloud-native security and highlights how F5 NGINXaaS for Azure delivers a fully managed, high-performance WAF to protect them. It outlines key capabilities such as OWASP Top 10 defenses, API security, DevSecOps integration and Azure-native observability, helping enterprises secure apps and APIs without hardware or operational overhead.
The Grizzled CyberVet: State of Network Security
Network security has evolved rapidly, with the field now embracing zero trust, AI-driven defenses and integrated platforms. The next five years will see AI, SASE and quantum-resistant cryptography reshape the landscape. Enterprises must consolidate tools, adopt AI automation and prioritize identity-first security to stay ahead of increasingly sophisticated cyber threats. Secure your future now.
How 2023 Advancements in Generative AI should Immediately Sound the Alarm for API Security
Rapid advancements in generative AI come with increasing API security concerns. Generative AI bolsters API security while also presenting new and increased risk. OpenAI's DevDay in 2023 marked a significant leap, with customized GPTs now capable of large-scale API interactions, urging the need for robust API security strategies. The article stresses the necessity of a proactive and adaptive defense against AI-driven threats to API security.
Comprehensive Guide to OWASP Top 10: Web Applications, APIs and Automated Threats
The Open Web Application Security Project (OWASP) provides industry-standard frameworks for identifying and mitigating the most critical security risks facing modern applications. This guide explores three critical OWASP initiatives and maps F5's Web Application and API Protection (WAAP) solutions to each threat category.
What You'll Learn:
* OWASP Web Application Security Top 10 (2021)
* OWASP API Security Top 10 (2023)
* OWASP Automated Threats to Web Applications (21 threat types)
* How F5 solutions protect against each threat category
* Hands-on lab exercises to practice defense techniques
API Security Fundamentals: An Introduction (and What Does the Super Bowl Have to Do With It?)
Let's delve into all things API security, particularly aimed at global financial institutions. Here, I cover the basics and provide an overview of WWT's approach (with a Super Bowl-themed twist). Next, I'll cover API discovery; then API focused threat detection, prevention and response; and lastly, API security testing and validation.
OWASP API Top Ten 2023 - All Your API Vulnerabilities Are Belong to Us
The OWASP just released their API Top Ten API Security Risks for 2023. Here's the rundown with some inside industry perspective.
Cybersecurity Platforms vs. Point Solutions: Swiss Army Knives or Precision Tools?
This first article in a 5-part series explores the difference between cybersecurity platforms and point solutions. It explains how platforms offer unified, scalable protection while point solutions deliver specialized, best-in-class capabilities. Using simple analogies, it shows how these approaches tackle complex business challenges, setting the stage for deeper dives in upcoming articles.
Beyond the Cyber Basics: A Recap From Black Hat USA 2023
I recently attended Black Hat USA 2023 in Las Vegas, where the lights shined on AI, applications, API, cloud, data and software supply chain security. Reflecting on this well-attended event, I bring to you some perspective on the state of the industry.