Tag
broken-authentication
Safeguard articles tagged "broken-authentication" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Vulnerability Analysis
What is Broken Authentication
Broken authentication lets attackers assume another user's identity via credential stuffing, forged tokens, or auth-bypass CVEs like Fortinet's CVE-2022-40684.
Mar 23, 20266 min read
Application Security
What is API Authentication
API authentication verifies who's calling your API before authorization decides what they can do — here's how it works, common methods, and where it fails.
Mar 8, 20267 min read
Industry Analysis
Broken Authentication in API Endpoints
Broken authentication in API endpoints drove breaches at T-Mobile, Optus, and Peloton. Here's why it keeps happening and how to catch it before attackers do.
Nov 5, 20257 min read