API Observability & Security Newsletter – Oct 2023

June 13, 2024

API Observability and Security Newsletter

Oct 2023

Hello Levo Community,

Great things are happening at Levo, and I’m eager to share our latest progress with you. First, I am very proud to share that we have achieved SOC 2 Type 2 attestation, GDPR compliance, and ISO 27001:2013 compliance, demonstrating our commitment to protecting customer data. More information about this milestone can be found on our blog here.

On the events side, Levo’s team attended the AppSec Cali conference in Santa Monica last month and had several helpful conversations with the attendees about the latest API trends. The opportunity to get out of the office and meet with people in person is always a pleasure for me.

There is always a lot going on in the field of APIs, so here are some recent developments in the industry that you should be aware of.

  • API security testing market is expected to reach $4.5b by 2030, as per Infinity Business Insights. We think it will grow much faster, and Levo will be a big part of that journey.
  • Digitalisation is excellent, except for the API security. Read from Imperva’s CEO on how digitalisation has made cyber threats more challenging to crack.
  • OpenSea had a security breach that impacted all API keys. This shows the importance of API security.

Unveiling a Suite of New Features for Unmatched API Observability and Security

API Observability

External Apps

Have you ever wondered which APIs are most exposed and vulnerable? Using the new External Apps feature, you can automatically identify external applications and endpoints accessed externally to prioritize remediation efforts.

Postman Collection

It’s time to level up your Postman game! With Levo, you can generate Postman collections pre-filled with live data parameters from your environment. The best part is that you can export collections for any end user since Levo has end-user context. API testing has never been easier! Learn more about this exciting feature here.

Environment Support

With Levo’s multi-environment support, segregate your API inventories, assets, specifications, and vulnerabilities as per your different environments—just add the environment name to your sensor configuration.

Tags and More
  • Tags Support: Easily categorize and manage your APIs using the newly added tags.
  • Sensitive Field Notifications: Receive alerts for new fields containing Personally Identifiable Information (PII).
  • Configuration in UI: Most configuration is now available through UI, so you don’t have to fight with config files.
  • Instrumentation: Robust improvements, including HTTP2 support and OpenSSL 3.0 library instrumentation.
  • Deployment & Performance: We now support AWS Fargate and key memory improvements to perform better with fewer resources for our eBPF sensor.

API Security

Run Tests with One Click

A proactive approach to security is the only way for it to be effective. That’s why now you can run both the app and the endpoint security tests with the click of a button, with just a few clicks. Customize payloads at the endpoint level for tailored security testing.

Deployment Improvements

Levo’s Satellite can run on any cloud, Kubernetes cluster, or virtual machine. Additionally, we are introducing satellite deployment options for AWS EKS Fargate and ECS. Furthermore, you can now proxy all sensor traffic through your proxy for advanced network configurations.

There are a lot of great new features in our platform, and we are looking forward to seeing how you use them. We will always be available to assist you, so please do not hesitate to contact us whenever you need assistance.

Get started for free

If you’re not using Levo, please sign up for free (no credit card is needed). We have a free forever plan for up to 100 API endpoints.

Upcoming Events

  • We look forward to meeting the Cybersecurity community at the Bay Area Cyber Leadership Conference 2023 on Oct 21st in the San Francisco Bay Area.
  • Are you attending API World? We will be in Santa Clara, CA, for the API World event, so please ping our team and let’s chat about API Observability and Security.
  • Join us at the next OWASP DC conference from Oct 30-31 for the Global AppSec conference. Our team will be there to talk about API security trends and best practices.

This is an exciting time in our industry, and I am excited about the significant investments we are making. You can contact me anytime if you have questions or want to learn more about what we are building. Also, please let us know what you want to see in our future newsletters.

elliptical light
  • Runtime Agnostic
  • Cloud Agnostic
  • Programming Language Agnostic

Subscribe for experts insights on application security.

Oops! Something went wrong while submitting the form.