Blog posts on API Security
API Security blog posts(58)

Datos Insights: Securing APIs and multicloud in financial services
New threat analysis from Datos Insights highlights actionable recommendations for API and web application security in the financial services sector
By Chad DavisCybersecurity Awareness Month: Four ways to stay safe online
Here are four tips from the Cybersecurity and Infrastructure Security Agency (CISA) and F5 for how you can keep your users safer online.
By Jay Kelley
Three things every CISO should know about API security
Ever wanted to know what organizations could learn from looking at API security from the attacker’s perspective? Read our blog post to find out.
By Chuck Herrin
Protect AI innovation on AWS with API security
Learn the five key elements of a comprehensive approach to API security that addresses discovery, authentication, and the elevated risk of AI-specific threats.
By Dave Morrissey
API Security Risks and Challenges
Discover why APIs are critical for modern app development and learn how to secure them against top vulnerabilities. Get expert tips and actionable strategies.
By F5 Newsroom Staff
Excellence at Scale: Transforming AI Infrastructure with F5 and MinIO’s Secure Data Delivery
Discover how F5 and MinIO are revolutionizing data storage with innovative solutions that enhance performance, scalability, and security.
By Ahmed Dessouki
PCI DSS Is the Baseline: The Case for Web App and API Protection in E-commerce
The latest PCI DSS compliance mandate has significantly expanded in scope to offset the growing threat of sophisticated attacks to the e-commerce sector.
By Byron McNaught
Proactive API Security: The Benefits of Early Vulnerability Detection
Discover how F5's new API testing capability enables proactive vulnerability detection before deployment, helping organizations avoid costly breaches and strengthen their security posture.

Ransomware in Healthcare: The Application Threat Vector
The healthcare industry remains a favorite target of attackers—notably by targeting vulnerabilities and compromised credentials in ransomware campaigns.
By Byron McNaughtHow Agentic AI Simplifies Cybersecurity and Modern Threat Management
Fletch’s agentic AI capabilities will be fully integrated into the F5 Application Delivery and Security Platform, transforming how teams navigate modern security chaos.
By F5 Newsroom Staff
Securing Open Finance in 2025: Essential Insights for Financial Institutions
To excel in 2025, financial institutions must adopt proactive and airtight security strategies that address the unique challenges of open finance.
By Chad DavisAPI Security Needs Bot Management: Addressing the OWASP Top Ten API Vulnerabilities
The OWASP top ten API security vulnerabilities list clearly identifies the central role bots play in attacks on APIs.
By Jim Downey
Make Your AWS Environment PCI DSS v4.0.1 Compliant with F5
By implementing F5 solutions alongside AWS security controls, organizations can ensure compliance with the updated Payment Card Industry Data Security Standard.
By Dave Morrissey
Choosing the Right Load Balancer and Application Delivery Controller as a Service for Azure
Explore when to use default Azure tools and third-party native cloud services like F5 NGINXaaS for Azure for scalable, flexible, and secure application delivery.
By Brian Ehlert, Ilya Krutov
F5 Named a Finalist (Again!) in the 2025 SC Awards for Best API Security Solution
F5 is a finalist in the 2025 SC Awards for Best API Security Solution, highlighting our innovation and leadership in cybersecurity.
By Ian Dinno
Modern App Delivery in Kubernetes with F5 BIG-IP
Discover how F5 BIG-IP enhances app delivery with automation, security, AI integration, and scalability for modern Kubernetes application infrastructures.
API Protection for AI Factories: The First Step to AI Security
AI applications are highly distributed, interconnected by vast ecosystems, and require API security. See how API security applies to AI factories.
By Byron McNaught
Unlock the Future of App Security at AWS re:Invent 2024
As F5 and AWS enter their second decade of partnership, the two companies are helping customers prepare for the new era of AI.
By Dave Morrissey15 Questions to Ask About Your API Posture
Is your organization on top of API security? Answer these questions to find out.
By Chuck HerrinF5 and Google Cloud: Secure App Modernization within Reach
Combining F5’s app security and delivery solutions with Google Cloud’s cloud-native infrastructure empowers organizations to embrace app modernization.
By Beth McElroy
API Security: Programmability Is Required
Programmability is essential for API security, enabling testing, threat mitigation, seamless upgrades, and integration. It’s crucial for handling zero-day vulnerabilities.
By Lori Mac VittieGPU as a Service: The Catalyst for AI Growth in ASEAN, Opportunities, and Challenges
GPUaaS is transforming the way businesses approach AI infrastructure. See how it works and why it’s becoming the go-to solution for AI-driven organizations.
By Chin Keng LimQ&A with a Security Expert: Simplifying Web Application and API Protection Decisions
Hear from an application and API security expert about the critical importance of simplifying web application and API protection decisions.
By Chad Davis
Why Should You Care About WebAssembly
WebAssemby (Wasm) is a portable, fast, and secure binary instruction set enabling high-performance applications on any platform.
By Oscar Spencer
State of Application Strategy: Who Should Drive Your API Security Strategy?
The most comprehensive security controls are achieved when organizations assign API security to these teams. Make sure your APIs are protected from attacks.
By Lori Mac Vittie
AI Changes Nothing and Everything
AI's impact on app delivery and security is nuanced: while AI apps use the same security and delivery services, architectural changes necessitate new deployment strategies.
By Lori Mac VittieModernizing Your App Security with F5 on Google Cloud
With F5 security solutions fortifying the Google Cloud platform, there are ways to overcome many of today's pervasive security challenges.
By Beth McElroyReasons to Explore Zero Trust Access Security with Microsoft Entra ID
Organizations globally are adopting zero trust principles to secure today’s modern, distributed environments. Should yours? Here's why you should consider with F5 and Microsoft Entra ID (formerly Azur...
By Tim DorschtBuild, Secure, and Optimize Your AI Apps with F5 and AWS
As AI continues to play an increasingly critical role for businesses, the ability to manage costs, mitigate risks, and deliver exceptional performance will be crucial to maintaining a competitive edge...
By Dave MorrisseyPCI DSS 4.0.1 Update: Major New API Security Upgrades Required for Customer Payment Processors
The PCI DSS 4.0.1 update features new requirements focused on the widespread adoption of APIs and the evolution of the apps and infrastructure supporting a growing number of services and interactions ...
By Ian Dinno