September 2023 Newsletter: LLM Security Beta, Akto on G2 and more
This blog is the second monthly newsletter for Akto. Akto's API security newsletter talks about beta program, new features launches and upcoming events.
Ankita Gupta
Oct 2, 2023
👋 Hello Akto community!
Welcome to the September edition of the Akto Newsletter!
This month we are announcing Akto's LLM Security beta in November, launch of Akto in CLI, Vulnerability tagging with CWE, Login with GitHub, Akto on G2 and Gartner. Read on to learn more.
TLDR Important links:
[NEW Launch] LLM Security for AI APIs in Beta
We cannot be more thrilled to announce beta launch of our new features in a new category - LLM Security. We are the first ever security company to launch LLM Security features and we can’t wait to reveal them to the world. Join us as we reveal features for OWASP Top 10 for LLMs such as prompt injection, insecure output handling and more. Sign up for Beta here.
We are now on G2 and Gartner
Akto has grown with tonnes of customer reviews and feedback. We thought of giving our users a platform to write user reviews so that others can learn more about the wonderful things we have been doing in the API Security space. To accomplish that, we are now officially registered on G2 and Gartner. Go ahead and check our platform page and help us get those five star ⭐️ reviews.
Super Exciting new launches last month!
Introducing Akto in CLI
You can now run Akto tests directly from the Command-Line Interface (CLI). No need to jump between screens or platforms. Run Akto tests right from your terminal, be it locally or on a custom domain. Start now by testing from the largest API Security library. You can read the announcement blog to get started.
Akto’s Test Editor is now 2x more efficient
We've added autocomplete, syntax error highlighting and examples snippets in YAML test editor. With auto-generation to YAML templates, you can choose to add example commands by just clicking on the suggestions from test editor. You no longer have to lookup and find the YAML operators while writing your test. Read more in the announcement blog.
Login using GitHub is now available to all On Premise users
In order to allow for easy access, Akto has incorporated the Sign in with GitHub button, easily extending to developers in your organization. Signup using this link. Read announcement blog.
✔️ More Product Updates:
Export vulnerability reports: This is the first step towards collaborative reporting. In order to improve collaboration and help security teams share finding reports amongst each other and developers, we have released a feature called Export as HTML. Read our announcement blog.
Akto Vulnerabilities are now tagged with CWEs: Every vulnerability detected by Akto now comes with one or more associated CWE tags. CWE provides a shared vocabulary, ensuring that everyone, from developers to security teams, is on the same page. Read announcement.
API CVE Database: We now have API CVE database - Security vulnerabilities found in popular and common software on our website. This is also the world’s first API only CVE database.
💡 Upcoming events:
Hacktoberfest 2023 : Akto is participating in Hacktoberfest 2023 this year. Go ahead, contribute to open issues in Akto’s GitHub Repository.
The Roadmap to DevSecops Adoption: Akto’s cofounder and CEO is speaking this year Teleport Conference 2023 in San Francisco. Register now to get your spot.
Hands on API Security Workshop in LA: Akto is back with it’s popular API Security workshop in LA in collaboration with OWASP on Oct 27. Register now.
📕 Recommended Reading, listening and watching:
What is DevSecOps?: Introduction to DevSecOps, its evolution, and significance. Learn about it here.
DevSecOps Best Practices: Learn about the top 8 devsecops best practices for secure software development.
XML Injection Vulnerability: A comprehensive guide, examples, cheat sheet, and prevention measures.
Akto’s 2nd podcast episode - API Security: The good, the bad, the ugly, Ep2: Ashwani Mahajan from SoFi explores critical security practices for API security.
Hands on OWASP Top 10 Tutorials: Check out tutorials on SSRF Port Scanning, Mass Assignment and BOLA in old API versions.
🤔 What’s Next?
Stay tuned for exciting new features, riveting podcast episodes and immersive conversations on proactive API Security!
If you've made it this far, I'd love to know what you think of our newsletter! What would you like to hear about next? Reply to let me know!
Stay tuned for the latest news in API Security. See you next month! 🚀
Keep reading
API Security
8 minutes
NIST Cybersecurity Framework
The NIST Cybersecurity framework provides organizations with a set of standards, guidelines, and practices to develop strong cybersecurity practices for managing cybersecurity risks effectively.
API Security
7 minutes
API Security Audit
An API Security Audit evaluates APIs, identifies potential risks, and strengthens the organization's defenses against security breaches and cyber-attacks.
API Security
8 minutes
Security Information and Event Management (SIEM)
SIEM aggregates and analyzes security data across an organization to detect, monitor, and respond to potential threats in real time.
Experience enterprise-grade API Security solution