ProgrammableWeb tracks the latest API news to keep you on top of the API economy
Searching: No Search Term , Filtered By Category: "Security"
The never-ending cycle of vulnerability discovery and remediation continues this week with an announcement from IBM concerning a “Droppedin” flaw in an SDK from Dropbox.
Group led by AirWatch calls for standardized ways to invoke Apple iOS and Google Android APIs.
SmartBear has announced the SmartBear Developer Network allowing for their community to collaborate on projects.
Feedzai launched many enhancements to its Fraud API just a few months after its release. The enhancements resulted from direct feedback from its partners and developer community.
Social networking giant Facebook launched an API-based platform called ThreatExchange that lets companies share information about security threats.
A Canadian software developer has used Tinder's private API to create a "Tinderbot" to automate his online dating.
ShieldSquare has developed API access to its bot identification and remedy solution. Identified bots are denied access, given fake data or challenged through a CAPTCHA.
Andrew D Hoffman’s private API key was retrieved from GitHub by a bot which then ran up a huge bill on his AWS account while he slept.
Within days of the Super Bowl, researchers at mobile gateway provider Wandera have apparently discovered a severe vulnerability in the National Football League's mobile app.
The US and the UK announced an upcoming "Cambridge v. Cambridge" Hackathon. The hackathon will pit MIT and University of Cambridge cyber security experts against each other.
While the debate over the ethics of reverse-engineering a private API rages on, the real issue is the vulnerability of APIs, especially through associated mobile apps.
Despite Instagram having fixed an API vulnerability, supposedly private photos are still vulnerable to unauthorized access thus proving how difficult API security can be.
Mitmproxy, a Python console program used to intercept and examine supposedly secure API traffic, has become a go-to tool for individuals looking to reverse engineer private APIs.
August has announced August Connect which web-enables its Smart Lock product. A corresponding API allows third-party app and hardware providers to integrate with the lock.