Skip to main content
View all products
Compute
Storage
Networking
Databases
Services
Solutions
Pricing
Library
Technical Resources
Community
Marketplace
What's New
Explore Blog
Categories
10
  1. Cloud Overviews
    1
  2. Compute
    56
  3. Containers (Kubernetes, Docker)
    7
  4. Databases
    8
  5. Developer Tools
    8
  6. Linode
    10
  7. Networking
    3
  8. Open Source
    1
  9. Security
    8
  10. Storage
    5
Authors 38
  1. Ansley Flanagan 1
  2. AJ Johnson 1
  3. Alex Leung 11
  4. Abe Massry 2
  5. Amit Mohanty 1
  6. Ari Weil 4
  7. Billy Thompson 4
  8. Chris Milsted 1
  9. David Eisenbacher 1
  10. Gary Gaughan 1
  11. Hana Jeddy 2
  12. Jim Ackley 1
  13. James Brown 4
  14. Jessica Capuano Mora 4
  15. Jorge Gaona 1
  16. Jean-François Lecas 1
  17. Jason Tanabe 1
  18. Linode 9
  19. Michael Archer 1
  20. Maddie Presland 14
  21. Mayur Upadhyaya 1
  22. Nazir Kabani 1
  23. Pavel Despot 1
  24. Philip McGuinness 1
  25. Prasoon Pushkar 5
  26. Pedro Salvado 1
  27. Peter Sari 8
  28. Robert Blumofe 1
  29. Santiago Giraldo 1
  30. Swati Kumar 1
  31. Stuart Macleod 1
  32. Sander Rodenhuis 3
  33. Linode Support 1
  34. Travis Baka 1
  35. Talia Nassi 9
  36. Tim Vereecke 2
  37. Vineeth Varughese 3
  38. Yuri Goldfeld 1

Linode Blog > Security

8 posts
A login screen with a blank username and hidden password with the text "Authentication Isn't Everything"
Headshot of Alex Leung.

Authentication Isn’t Everything

Dec 10, 2024
by Alex Leung
Alex Leung explains why fortifying one's login API and loosening other parts of one's security posture can lead to cybersecurity issues.
Security
Illustration of a padlock in front of an illuminated data network with the following text: "Pad Credit Card Information to Protect Your Customers’ Wallets"
Headshot of Alex Leung.

Pad Credit Card Information to Protect Your Customers’ Wallets

Dec 5, 2024
by Alex Leung
We take a look at a recently-assessed API, to see how it avoided the problem that helped the Allies beat the Axis powers in World War II.
Security
An ominous-looking room that mostly lies in the dark, with only the floor being visible. The text reads, "In the Dark about Shadow APIs?"
Headshot of Alex Leung.

In the Dark about Shadow APIs?

Oct 31, 2024
by Alex Leung
Shadow APIs aren’t typically a risk you would think about when developing APIs. See real-world examples to understand the threats they pose.
Security
Illustration of an angled browser window that shows a mouse cursor close to the security lock symbol of a website address. The text reads, "Loose Lips Can Sink Websites Too", with the words "sink" and "websites" being highlighted in bold.
Headshot of Alex Leung.

Loose Lips Can Sink Websites Too

Oct 21, 2024
by Alex Leung
This blog dives into how exposed version numbers in your tech stack can lead to serious vulnerabilities, and what you can do to tighten security.
Security
Illustration with the text "Pay Attention to Your Non-Production Subdomains"
Headshot of Alex Leung.

Pay Attention to Your Non-Production Subdomains

Oct 17, 2024
by Alex Leung
Security teams often focus on an organization's main production domain. Learn why paying attention to your non-production subdomains matters.
Security
An illustration that shows a stop watch and a shield with a check mark with the text "Cutting Latency, Not Security"
Headshot of Philip McGuinness.

Cutting Latency, Not Security

Oct 3, 2024
by Philip McGuinness
Content Security Policy (CSP) is a security feature implemented in browsers to protect websites and web applications from attacks.
Security
Illustration of a security question and answer entry capture screen, with text Pointless May Not Be Harmless.
Headshot of Alex Leung.

Pointless May Not Be Harmless: The Story of a Login Page with a Blank Security Question

Sep 17, 2024
by Alex Leung
Discover how attackers exploit security vulnerabilities in login pages and learn how to protect your web applications with best practices.
Security
A leaking pipe with the text "Security in your DevOps Pipeline: Is your GraphQL API leaky?"
Headshot of Alex Leung.

Security in Your DevOps Pipeline

Sep 10, 2024
by Alex Leung
Not disabling introspection before going live can pose a major security risk. We offer steps to improve security in your DevOps pipeline.
Security