Source: – Author: Tim Erlin It’s been reported that 2.6 million user records sourced from the Duolingo app are for sale. The attacker apparently obtained them from an open API provided by the company. There’s a more technical explanation available here.  While we talk a lot about the vulnerabilities in the OWASP API Top-10 […]
La entrada API Abuse – Lessons from the Duolingo Data Scraping Attack – Source: se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.