The Latest News On The API Economy
Searching: No Search Term , Filtered By Category: "Hacking", Category: "Food", Category: "Health", Category: "Applications"
Yelp continued its barrage of developer news today. The company's latest announcements include a completely redone developer program and the Yelp Fusion API that will replace Yelp's existing API over time. New API features include more pictures, content caching, autocomplete and more.
myTomorrows has opened its database of clinical trial data to the developer community through an open API. Previously available only through the myTomorrows website, the database includes trials from the WHO's registry network. The API is free to use with no registration required.
Yelp spent two years developing a bug-bounty program with Hackerone, which led to over 100 resolved reports. Now, Yelp is taking the program to the broader public to engage a wider set of security researchers. The program offers bounties starting at $100 and can pay up to $15,000.
Bluetooth beacons offer a range of uses for sending radio signals over the air to connected smartphone applications. In this tutorial, developer Kuba Gretzky explains how he bypassed the beacons in restaurants to collect authorisation keys and earn himself free beer on a points-based app.
Pokémon GO has been hugely popular and generated millions of sessions around the world as people search for the digital creatures. But, it turns out that a fair chunk of recent API traffic has been coming from gaming bots that are making spatial queries to the API from outside of the game client.
Translational Software has released an API that allows apps to pull data on drug-drug-gene interaction. At the point-of-care, clinicians can use gene-drug, and drug-drug interaction data to make informed decisions on care. Genetic testing has become an increasing tool in clinicians' routine care.
Google said it plans to shutdown the GData Admin Settings API. It is giving developers one year to migrate to newer tools. The API will cease functioning in August 2017. The Admin Settings API lets Google Apps admins retrieve and change the settings of their domains in the form of Google Data
In 2015, the NFL started collecting a massive amount of data from players on the field leveraging wearable technology. Given how often and quickly players move around on the field, the data piled up quickly and the NFL was left with a veritable treasure trove of data they called Next Gen Stats
Apple has announced that the company plans on launching its first-ever bug bounty program in September. The program will initially be invite only and the company will pay up to $200,000 USD to researchers who discover and report iOS and iCloud bugs and security vulnerabilities.
Visa has opened the submission process for the next edition of The Everywhere Initiative. The next phase is open to startups in Australia and New Zealand that will respond to one of three challenges that use Visa APIs to improve commerce experiences. Visa will accept responses through August 26th.
As Pokemon Go continues is rise in popularity, many developers have reverse engineered the game to publish unauthorized APIs. Niantic has now issued a cease and desist letter to a popular Pokemon Go API developer in an attempt to quash the unauthorized practice. Will threatened legal action work?
Twilio recently announced a developer preview for its new Twilio Sync offering. Twilio Sync maintains a single state synchronization infrastructure in the cloud that third party developers can utilize to introduce real-time synching and collaboration functionality into their apps.
Security researcher Avicoder reported that he uncovered a vulnerability in Twitter's Docker installation housing its Vine source code. The researcher downloaded the entire Vine source code in one of the 80+ server images pulled. Twitter secured the install within 5 minutes, and paid compensation.
At this year’s Apple World Wide Developers Conference, one of the underlying themes Apple introduced was the concept of extensions. The goal being to blur the boundaries between apps on the platform, through widgets, but more notably, allowing developers access to many of Apple’s applications.
Security researchers have discovered a vulnerability in the Swagger ecosystem that could result in the exploitation of Web API endpoints when those endpoints or any SDKs designed to access them are generated from a Swagger-based API description. Malicious remote code execution is the main concern.
Pronounced ‘fire’, FHIR (Fast Healthcare Interoperability Resources) is the HL7 specifications for supporting APIs in exchanging data among HIT systems. By enabling the sharing of data, FHIR has the potential to unite PHM and EMR tools and streamline the process of providing care.
Facebook has rewarded a 10 year-old boy from Finland with a $10,000 bounty for discovering an authentication-related vulnerability in the Instagram API that could have enabled a hacker to delete comments of any user on the popular social photo sharing service even without an Instagram account.
Microsoft has released the Windows Store analytics API. The API provides programmatic access to app analytics that previously required a log in to Dev Center and manual data retrieval. With the new API, developers can easily run reports for interested parties, and conduct deeper app data analysis.
The way the Square API delivers JSON output makes it possible for an attacker to engage in a cross-site scripting (XSS) under certain circumstances. The vulnerability was discovered by security researcher Ajay Chavda and reported to Square on August 7, 2015 through its bounty program on hackerone.
Global API conference series APIdays will kick off its 2016 international program in Melbourne when APIdays Australia is held on March 1 & 2. The conference has a particularly strong range of international and local speakers talking about the uptake of APIs in government, health and fintech.