wallarm logo

How attackers exploiting e-commerce API vulnerabilities

Are you managing an Online e-commerce business security team?
We have selected 3 API security issues that caused data breaches in the e-commerce and online retail industry last 2 years:

Reward credits stealing by SQL injection in REST API

Application-level DoS attack by exploiting logic bomb in a Lucene search engine at black Friday

Massive users’ account takeover attack by exploiting a stored XSS vulnerability

According to Gartner’s research, 83% of all the traffic in the Internet is API calls. E-commerce industry was one of the early adopters of the SPA (single-page-application) and API approach to deliver better buyers experience and deal with the supply chain automation. Unfortunately, because of business urgency and deployment speed, API security often remains overboard.

Our speakers:

Watch the webinar

wallarm logo 2
Платформа Валарм WAF
Почему Валарм WAF?Защита API Защита облачной инфраструктурыИнтеграции
Решение
для облаков
Валарм для AWSВаларм для GCPВаларм для AzureВаларм для Kubernetes
Решения
для индустрий
Валарм для здравоохраненияВаларм для финтехаВаларм для e-commerceВаларм для технологических компаний
Ресурсы
Библиотека ресурсовИнфографикаВидеоИстории успехаВебинары
Документация Валарм
ДокументацияAPI specsTerraform Provider
Условия предоставления услугПолитика конфиденциальностиИспользование CookieSecurity Bug Bounty Program
2021 © Wallarm Inc.
Валарм
БЦ NEO GEO, улица Бутлерова, 17, этаж 5, офис 5001, блок В
Москва, Россия
+7 (499) 322-12-55request@wallarm.com