Securing REST API Endpoints Against Data Leaks: Or, How to Avoid Another Optus
- James Cooper
- Comfy con au 2024 winter
- January 1, 1
Optus and their customers had a very bad time in 2022, with a massive data breach resulting in customer PII released into the wild. This apparently happened because a REST API was not properly secured. This talk will briefly speculate on why that might have been, then discuss at a high level some measures organisations can take to try to avoid it happening to them.