The Latest News On The API Economy
Searching: No Search Term , Filtered By Category: "Healthcare", Category: "Compliance", Category: "Security"
Arxan Technologies, provider of application protection solutions, announced the launch of Arxan for Web, the latest update to its protection solution for client-side web apps. Arxan for Web provides a multi-layered defensive approach that allows companies to defend against server side API attacks.
A few months after Facebook announced a new app review process in the wake of numerous Facebook app-related scandals, Facebook is about to make the process automatically enforced. To date, developers have had the option to enroll for review, or avoid the process. That is changing soon.
DrChrono has announced upgrades to the DrChrono API which includes some new endpoints such as are Clinical Quality Measures (CQM), Clinical Notes, Tasks, Billing, and Labs. The company has also added new webhooks to the DrChrono API and launched a new FHIR API that focuses on patient experience.
This week Facebook expanded their bug bounty program to now accept reports about vulnerabilities in third-party apps and services that connect to Facebook user accounts in addition to reports related to its own products. This is the social giant's latest nod towards protecting its users' data.
For the second time in six months, a Grindr API security flaw has exposed location data of Grindr users. The latest security flaw involves a private Grindr API that fails to block third party access. Developers have exposed the flaw and are able to track the location of users to within 5 meters.
Microsoft has released a new Microsoft 365 Secure Score API which includes new updates such as integration with Microsoft’s Security Graph API, the addition of dual entities, and availability in the Microsoft Graph Explorer. This API replaces the original Microsoft Office 365 Secure Score API.
Google has launched an API toolkit to combat child sexual abuse material (CSAM). The Content Safety API uses artificial intelligence to better screen and limit the spread of CSAM online. An API approach increases speed of review, identification, and stop of abusive material.
According to Nightwatch Cybersecurity a vulnerability was recently found in system broadcasts by Android OS that could expose information about a user’s device to any applications running on the device. Information about a user's Wi-Fi connection can be read and used for tracking purposes.
Mobile provider T-Mobile has informed 2.3m of its subscribers that personal data associated with their accounts was exposed to an attacker as the result of an unprotected API. According to the company, the data exposed included name, billing zip code, phone number, email address and account number.
Earlier this week, Salesforce.com disclosed that a potential security issue with one of its APIs has been corrected. The issue impacted a subset of Salesforce.com Marketing Cloud customers that used Email Studio and Predictive Intelligence and no malicious activity related to the issue was detected.
In an effort to protect its platform from spam and abuse, Twitter today unveiled a number of changes to the way developers will request and obtain access to Twitter's APIs. First, Twitter is requiring that all requests for access to the APIs go through a new developer account application process.
Because of its default settings, digital payments service Venmo exposes many of its users' transactions to the world through its public API. Using the API, researcher created a website, Public by Default, that visually details the implications of Venmo's public by default approach.
Security researchers have discovered a secret API in Microsoft Office 365 that gives investigators access to detailed information about activities that take place within Office 365. It makes available information about attachment, read and search activities, along with a variety of metadata.
While the furor around Facebook's Cambridge Analytica scandal have died down, the world's largest social network continues to make changes to its APIs "to better protect people’s information". Today, it announced that a number of its APIs will only be accessible to apps that have been reviewed.
Last year, Google announced that Android app developers would need to target recent APIs starting mid-2018. That time has come and Google has not changed its tone. Facebook has indicated that its main app will target API level 26, Android Oreo 8. Other Facebook apps should follow suit
Google is promoting the fact that beginning in Android P, developers have access to a BiometricPrompt API that allows them to integrate biometric authentication into their apps. The BiometricPrompt API only exposes strong biometric modalities, which are those that are less easily bypassed.
Since the Cambridge Analytica debacle, Facebook has faced pressure to improve its security practices. In response, Facebook cut the functionality of its Graph API and the Instagram API. Now, one developer has petitioned Facebook to go even further in making the Instagram API more open and secure.
If you were existing anywhere but under a rock for the last few weeks, then you were probably subjected to a gauntlet of GDPR notifications from the websites that you frequent, including ProgrammableWeb. They may not have even mentioned GDPR or the General Data Protection Regulation.
Personal Remedies has set a goal of combatting chronic illnesses through diet. It is empowering a community of self-healers through its AI-based knowledge base that finds food and nutrient based remedies for certain illnesses. Now, the "choose this" for "this disease" is accessible via API.
Apple has created a new Movement Disorder API that will be added to ResearchKit, its open source framework that is designed to let medical researchers gather data. Using the API, developers will be able to implement all-day monitoring on Apple Watch devices running watchOS 5.