1. SAST Online
  2. Application Security News and Articles
  3. What You Don’t Log Will Hurt You – FireTail Blog
Authenticate your profile to see activity

What You Don’t Log Will Hurt You – FireTail Blog

Aug 28, 2025 - Lina Romero - APIs have become the most targeted attack surface in enterprise environments, and AI (particularly agentic AI) is making it even harder to protect those critical connections. But one of the most often overlooked and misunderstood aspects of a strong AI and API security posture is logging.Last week, FireTail CEO Jeremy Snyder sat down with John Tobin of Virtual Guardian to discuss the issue in depth, using John’s extensive experience with API logging as a jumping off point. John Tobin has an extensive API security and management background and now heads product and service innovation for the Virtual Guardian.Drawing from his years of helping companies reduce risk and prevent breaches, John shared meaningful insights, case studies where logging both did and could have prevented breaches, and a breakdown of the 5 W’s of audit logging:What: request details, identifiers, and identity typeWhen: timestamp of when the request occurredWhere: IP address, site landed on, and downstream detailsWhy: details about the response and what went wrongWho: identity details and additional informationJeremy layered in his knowledge of AI security, explaining the complications introduced by agentic AI and how to build on knowledge of API security and apply it to AI as well, unifying logging into a single detection workflow for full observability into an organization’s landscape. Watch their full discussion below for more details:Key takeaways from the webinar include:What to log at the API layer for optimal securityLessons from the frontlines of API loggingHow to identify AI-generated traffic on APIsWhat patterns signal potential threatsWhere AI and API observability convergeFrom logging to action: steps you can take today We’ve said it before and we’ll say it again- documentation is king. Without logging, you can’t observe or understand your cyber environment and if you can’t see it, you can’t secure it. Don’t be like the organizations in John’s counter-examples. Act today!FireTail is a great tool for giving you full, centralized audit logs and the observability you need to take control of your AI and API logging. Book a demo now...

The post What You Don’t Log Will Hurt You – FireTail Blog appeared first on Security Boulevard.

28 August 2025


>>More