Broken Access Control
API access control is critical to protect sensitive data from unauthorized users. For example, an attacker can use stolen authentication tokens or brute force attacks to gain unauthorized access to applications. CloudVector continuously generates API catalogs that contain a comprehensive view of the parameters transacted in the request and response of each API. These APIs and parameters are categorized if they contain or transact sensitive data, such as personally identifiable information (PII)
https://t.co/ZN01ubDRAD