Listen to the latest episode of Guardians of the Enterprise for insights from cyber leaders - click here

API SecurityAppTrana Feature UpdatesAttacks & Data BreachesBotCDNComplianceCybersecurityData ProtectionDDoSEvents 2022Events 2023IndusfaceMobile Application SecurityNews 2022News 2023News 2024News 2025OWASP API Top 10OWASP Top 10Penetration TestingSaaSTranaSecurity BulletinSQL Injection AttacksSSLVulnerability ManagementWAAPWAS Feature UpdateWeb Application FirewallWeb Application ScanningWeb Application SecurityWebsite HackingWebsite SecurityZero Day Attacks

Indusface Blog

All
CVE-2025-55752: Apache Tomcat Path Traversal Vulnerability
Calender IconNovember 18, 2025
Author Icon
Clock Icon 4 min Read
CVE-2025-55752: Apache Tomcat Path Traversal Vulnerability

Apache Tomcat’s CVE-2025-55752 allows encoded path traversal through rewrite rules, risking sensitive file access and possible RCE in specific configurations

Read More...
API Security in Financial Services
Calender IconNovember 14, 2025
Author Icon
Clock Icon 8 min Read
API Security in Financial Services: Protecting the Digital Finance Ecosystem

Discover key risks, attack trends, and best practices in API security for finance to protect digital services, ensure compliance, and stop emerging threats.

Read More...
Compliance Requirements for MSSPs
Calender IconNovember 14, 2025
Author Icon
Clock Icon 6 min Read
Compliance Requirements for MSSPs: A Deep Dive into Achieving Continuous Trust and Assurance

Discover how MSSPs can achieve continuous compliance and client trust across frameworks like ISO 27001, SOC 2, PCI DSS, HIPAA, and GDPR, powered by Indusface AppTrana.

Read More...
WAF Custom Ports Support
Calender IconNovember 14, 2025
Author Icon
Clock Icon 8 min Read
Why Your WAAP & WAF Must Support Custom Ports, Not Just 80 and 443

Modern apps use more than 80 and 443. Learn why WAF support for custom ports matters, risks of gaps, and how to test vendor coverage

Read More...
API Compliance and Security
Calender IconNovember 14, 2025
Author Icon
Clock Icon 8 min Read
API Compliance and Security: Meeting Modern Regulatory Expectations

Discover how to achieve API compliance with PCI DSS, NIST, GDPR, and other standards to ensure security and protect your digital assets.

Read More...
Django vulnerabilities CVE-2025-64459 (SQLi) and CVE-2025-64458 (DoS)
Calender IconNovember 13, 2025
Author Icon
Clock Icon 3 min Read
Django Vulnerabilities Expose Apps to SQL Injection and DoS Attacks

Two critical Django vulnerabilities CVE-2025-64459 (SQLi) and CVE-2025-64458 (DoS) could let attackers manipulate databases and disrupt app availability.

Read More...
SessionReaper (CVE-2025-54236)
Calender IconNovember 11, 2025
Author Icon
Clock Icon 3 min Read
SessionReaper (CVE-2025-54236): Impact, Detection, and Mitigation

Learn how SessionReaper (CVE-2025-54236) impacts Adobe Commerce & Magento stores, with key mitigation steps plus AppTrana WAAP protection insights.

Read More...
API Security Metrics
Calender IconNovember 7, 2025
Author Icon
Clock Icon 4 min Read
API Security Metrics: Protecting APIs with Measurable Performance and Continuous Improvement

Track key API security metrics like authentication strength, vulnerability exposure, MTTR, and attack detection rate to ensure measurable, continuous protection.

Read More...
CISO Checklist - Evaluate API Security Platform
Calender IconNovember 7, 2025
Author Icon
Clock Icon 6 min Read
The CISO’s Checklist: How to Evaluate an API Security Platform

A comprehensive checklist for CISOs on how to evaluate an API security platform. Assess discovery, threat protection, integration, and TCO to choose the right solution.

Read More...
Achieving HITRUST CSF Compliance with AppTrana WAAP
Calender IconNovember 7, 2025
Author Icon
Clock Icon 5 min Read
Achieving HITRUST CSF Compliance with AppTrana WAAP: Bridging Risk, Visibility, and Continuous Protection

Achieve HITRUST CSF v11.6.0 compliance with AppTrana WAAP through continuous risk management, deep visibility, and adaptive protection for web apps and APIs.

Read More...
API Security Solutions for E-Commerce Platforms
Calender IconNovember 7, 2025
Author Icon
Clock Icon 7 min Read
API Security Solutions for E-Commerce Platforms: Protecting Transactions, Trust, and Brand

Protect your e-commerce platform with robust API security solutions that safeguard transactions, customer trust, and brand reputation from evolving threats.

Read More...
managed-rules-managed-WAF-busting-the-biggest-waap-myth
Calender IconNovember 7, 2025
Author Icon
Clock Icon 6 min Read
Managed Rules ≠ Managed WAF: Busting the Biggest WAAP Myth

Managed rules are not a managed WAF. Learn the difference, why false positives persist, and how to evaluate real managed protection.

Read More...
Sidebar Banner

Join 51000+ Security Leaders Get weekly tips on blocking ransomware, DDoS and bot attacks and Zero-day threats.

AppTrana

Fully Managed SaaS-Based Web Application Security Solution

Get free access to Integrated Application Scanner, Web Application Firewall, DDoS & Bot Mitigation, and CDN for 14 days

Get Started for Free Request a Demo

Gartner

Indusface is the only cloud WAAP (WAF) vendor with 100% customer recommendation for 4 consecutive years.

A Customers’ Choice for 2024, 2023 and 2022 - Gartner® Peer Insights™

The reviews and ratings are in!