Menu
Sign In Pricing Add Podcast
Podcast Image

Code Story

The Haunted House of APIs - The Haunted Web of APIs with Richard Bird

Thu, 24 Oct 2024

Description

The Haunted House of API'sToday, we are releasing another episode for Cybersecurity Awareness month, in our series entitled the Haunted House of API’s, sponsored by our friends at Traceable AI. In this series, we are building awareness around API’s, their security risks – and what you can do about it. Traceable AI is building One Platform to secure every API, so you can discover, protect, and test all your API's with contextual API security, enabling organizations to minimize risk and maximize the value API's bring to their customers.The Haunted Web: Navigating API Sprawl and Creepy CrawlersToday’s episode is titled The Haunted Web: Navigating API Sprawl and Creepy Crawlers, with Traceable’s Chief Security Officer, Richard Bird. As organizations scale and evolve, so does the complexity of their APIs. API sprawl, the uncontrolled expansion of APIs, creates a tangled web where vulnerabilities linger in the shadows. These unseen APIs become “creepy crawlers” of your digital infrastructure, creeping through your systems and posing security risks. Richard will discuss how unmanaged and undocumented APIs contribute to blind spots in security, the risks they create for organizations and the best strategies for securing a sprawling ecosystem.Discussion questions:Can you explain what we mean by "unknown APIs" and the different types, like shadow, rogue, zombie, and undocumented?Why do these APIs often go unnoticed, and how do they become security risks?What makes these APIs such an attractive target for attackers, and can you share an example of how one has been exploited?How can organizations begin to uncover these hidden APIs, and what tools or strategies are effective in doing so?In your experience, what are some common mistakes organizations make that lead to these unknown APIs being created or overlooked?SponsorsTraceableLinkshttps://www.traceable.ai/https://www.linkedin.com/in/rbird/https://richardbird.com/Our Sponsors:* Check out Kinsta: https://kinsta.com* Check out Red Hat: https://www.redhat.com* Check out Vanta: https://vanta.com/CODESTORYSupport this podcast at — https://redcircle.com/code-story/donationsAdvertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy

Audio
Featured in this Episode
Transcription

Full Episode

1.82 - 20.981 Noah Labhart

Hello, listeners. Today, we are releasing another episode for Cybersecurity Awareness Month as part of our series, The Haunted House of APIs, sponsored by our friends, Traceable. In this series, we are building awareness around APIs, their security risks, and what you can do about it.

0

21.622 - 46.849 Noah Labhart

Traceable AI is building one platform to secure every API so you can discover, protect, and test all your APIs with contextual security, enabling organizations to minimize risk and maximize the value APIs bring to their customers. Today's episode is titled The Haunted Web, Navigating API Sprawl and Creepy Crawlers with Traceable's Chief Security Officer, Richard Byrd.

0

47.449 - 65.454 Noah Labhart

As organizations scale and evolve, so does the complexity of their APIs. The uncontrolled expansion of APIs creates a tangled web where vulnerabilities linger in the shadows. These unseen APIs become creepy crawlers of your digital infrastructure, creeping through your systems and posing security risks.

0

65.954 - 80.984 Noah Labhart

Richard will discuss how unmanaged and undocumented APIs contribute to blind spots, the risks they create for organizations, and the best strategies for securing a sprawling ecosystem. Well, Richard, thank you for being on the show today. It's great to be here.

0

81.564 - 92.358 Noah Labhart

Before we jump into our topic for today, which is the haunted web, navigating API sprawl and creepy crawlers, tell me and my audience a little bit more about you.

92.999 - 109.391 Richard Bird

I'm a longtime technologist, 30 years this year. I don't feel that old. I'm the chief security officer for Traceable, and I've been in the startup and solution side for about six years now. I spent more than 24 years in the corporate world where I was executive a number of different things.

110.031 - 127.96 Richard Bird

All I like to say is it took me 25 years of work in the corporate world to become an overnight sensation in the startup world. So if you're willing to put the work in for a quarter of a century, you can be recognized for being good at almost anything. I met my now wife about eight years ago. We looked at each other and said we both love music.

128.2 - 147.678 Richard Bird

I had been a young dad, so I hadn't been in the music scene for 25 years. In fact, I always like to tell people I saw Red Hot Chili Peppers in Columbus, Ohio in 1985 or 86. We looked at each other and said, who are we going to go see? And that's like asking your spouse, where are you going to go to dinner? And we looked at each other and said, have you ever been to a music festival? He said, no.

147.999 - 166.031 Richard Bird

We're some 55 music festivals later now. So that for me is fun, number one. Fun number two is hopping in our van and going to any national park, going to any trailhead and hiking for as long as we're able to and hiking back out. I keep myself busy.

Comments

There are no comments yet.

Please log in to write the first comment.