In this episode, we sit down with Will Glazier, Head of the Cequence Prime Threat Research Team from Cequence Security, as he discusses the intricate landscape of API security in 2024. Will delves into the essential intertwining of API security and bot management, emphasizing why these cannot be handled independently. The conversation covers the diverse nature of API security issues, from inventory and compliance to active threat protection, and the industry’s shift towards consolidated security tools. Will also highlights the often-overlooked but critical importance of API security, compared to more tangible threats like business email compromise, and stresses the necessity of integrating security within CI/CD pipelines to mitigate risks.

William Glazier is Head of Cequence Security’s new Cequence Prime Threat Research Team, whose mission is to help the security industry better understand how cybercriminals execute automated, malicious bot attacks against web, mobile, and API-based applications. As Head of CQ Research, Will focuses on the rapidly escalating problems of account takeover, fake account creation and content scraping at scale. He has an extensive background in fraud and abuse prevention, as well as building threat intelligence systems and databases. He has also extensively studied the shared attacker infrastructure and network fingerprints of tools used by cybercriminals to carry out these attacks, and has presented research at various security conferences such as BotConf, Hack.lu and GreHack.