Overview of the OWASP Serverless Top 10 [videos]

This YouTube video series provides quick overviews of the top 10 cybersecurity risks for serverless applications. Each video covers the risk and some recommendations on how to address it.

Why is the OWASP Serverless Top 10 important?

In this video, I discussed the reasons why the OWASP Serverless Top 10 cybersecurity risks for a serverless application are important to consider.

https://www.youtube.com/watch?v=wWDzqrvt73A

Injection attacks

In this video, I discussed what is the injection attack.

https://www.youtube.com/watch?v=QhmAs30-b_k

Broken authorization

In this video, I discussed what is broken authentication and authorization.

https://www.youtube.com/watch?v=fDO4n3HrvQw

Sensitive data exposure

In this video, I discussed the sensitive data exposure risk.

https://www.youtube.com/watch?v=Q8j8Cu0jhqc

XML external entities

In this video, I discussed the XML external entities risk.

https://www.youtube.com/watch?v=wtgTtYXenyM

Broken access control

In this video, I discussed the broken access control risk.

https://www.youtube.com/watch?v=nqBQdAiTOb8

Security misconfiguration

In this video, I discussed the security misconfiguration risk.

https://www.youtube.com/watch?v=yDyYqDGph8c

Cross-site script attacks

In this video, I discussed the cross-site scripting (XSS).

https://www.youtube.com/watch?v=jyLOBsHg-7c

Insecure deserialization

In this video, I discussed the insecure deserialization risk.

https://www.youtube.com/watch?v=RlV79AmI6Yw

Vulnerable components

In this video, I discussed the risk of using components with known vulnerabilities.

https://www.youtube.com/watch?v=Ij6xU48K11k

Logging and monitoring

In this video, I discussed the insufficient logging and monitoring risk.

https://www.youtube.com/watch?v=2Alu17kfNQA

--

--

--

Miguel is a published author and a cybersecurity engineer.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

How Hackers Sparked Fears of a 2021 Gas Shortage — Should You Really be Worried?

Colosseum Testnet Results & Next Steps

Revenue from team mining

Give Us Your Data or Leave — WhatsApp vs Signal

WhatsApp privacy policy update. WhatsApp vs Signal.

Alex Mosher of MobileIron: 5 Things You Need To Know To Optimize Your Company’s Approach to Data…

Surviving the Future of Cyber Security in Africa When Automation Takes Over :-)

Introducing The DApp List, Governance & More!

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Miguel A. Calles MBA

Miguel A. Calles MBA

Miguel is a published author and a cybersecurity engineer.

More from Medium

How to Protect Your Source Code in the Cloud

Building a serverless docker web application with Terraform and Fargate

Looking at LambdaShell.com after 3+ years

What is AWS Private 5G & Is AWS Competing with Telcos?