APIs are designed to facilitate programmatic access for application integrations and data sharing, but simple access misconfigurations in critical solutions like Salesforce can allow attackers to inappropriately access sensitive contacts, records, and more.
Kilian Englert and Ryan O'Boyle from the Varonis Cloud Architecture team discuss how these API misconfigurations occur, and some tools attackers use to exploit them.
__Please visit https://www.varonis.com/blog/abusing-salesforce-communities/ to learn more about this topic.
Kilian has a background in enterprise security engineering, as well as security solution selling. Kilian is a Certified Information Systems Security Professional (CISSP) and creates internal and public content on topics related to cyber security and technology best practices.