A pair of stories surfaced this week that serve as important reminders of how complicated, nuanced, and difficult API security really is. Even the biggest companies with the deepest pockets can't possibly be perfect when it comes to the security of their various API offerings and solutions.
Recent Security ArticlesView all
RiskIQ announced API updates to its cyber event investigation platform: PassiveTotal. The updates include the addition of projects and monitoring. Projects allow users to organize investigations within third party security infrastructure. Monitoring provides alert and response capability.
The amount of data captured for analysis is increasing all the time. Often this data is fed into multiple systems that need to analyze, process, persist or perform other operations with it. It is important that these systems make sure that sensitive data is identified and redacted.
Most Popular Security APIs (10) View all
Box is a modern content management platform that transforms how organizations work and collaborate to achieve results faster.
Box Platform provides content APIs to build secure...
||The ThreatCrowd REST API allows developers to access and integrate the functionality of ThreatCrowd with other applications. Some example API methods include identifying related infrastructure and...||Security||10.12.2015|
Google Safe Browsing
||The Google Safe Browsing API allows developers to access and integrate the functionality of Google Safe Browsing with other applications. The Google Safe Browsing version 3 API allows applications to...||Security||06.29.2007|
||Mist.io aggregates a user's cloud servers to help them monitor status and activity with a single unified interface. Mist.io displays real time analytics and visualizations of system metrics, and...||Web Site Management||10.10.2014|
||MEGA is a New Zealand based cloud storage service that helps users protect their privacy. With MEGA, users can control the encryption, users hold the keys, and users decide who to grant or deny...||Storage||01.24.2013|
All Security APIs (557)View all
TeleSign Phone ID
||The PhoneID service is a REST API that provides a cleansed phone number, phone type, and telecom carrier information that can be used to determine which phone numbers are a potential fraud risk, and...||Messaging||05.17.2017|
||The Score API is a REST service that delivers reputation scoring based on phone number intelligence, traffic patterns, machine learning, and a global data consortium. The Score web service provides...||Machine Learning||05.17.2017|
TeleSign SMS Verify
||The SMS Verify API delivers phone-based verification and two-factor authentication (2FA) using a time-based, one-time passcode (TOTP) sent over SMS. It allows you to send SMS messages for account...||Messaging||05.17.2017|
||TeleSign's Voice service is a REST API that allows you to easily send voice messages, alerts, reminders, and notifications, or send verification messages containing time-based one-time passcodes...||Voice||05.17.2017|
||The RiskIQ PassiveTotal API connects an existing application with a security management system which aims to block malicious infrastructure. Developers can create projects for status monitoring,...||Security||05.17.2017|
Mashups (25)View all
||Mist.io aggregates a user's cloud servers to help them monitor status and activity with a single unified interface. Users can view analytics visualizations from Mist.io's web interface...||Web Site Management||10.10.2014|
||IronBox is a service that protects data and secures privacy. Their IronBox Express is a web app that secures a user's DropBox account, ensuring file protection for all folder contents. IronBox...||Security||08.25.2014|
Captcha Bypass Service
||An efficient Captcha Bypass Service.||Tools||02.26.2014|
MappyHealth - Tracking disease trends, 140 characters at a time
||MappyHealth.com was developed in response to the NowTrending2012 application challenge. The team came together with a common mission to build an application that would positively impact public health...||Health||06.14.2012|
||IceCharge is a fraud detection and prevention service that is built on top of a digital profiling algorithm. The service tries to identify legitimate transactions based on trying to check the...||Messaging||08.29.2011|