March 23, 2015
Single purpose API
Related Articles (628)
Data Theorem, developer of application security systems, has announced two new solutions for API security analysis, API Inspect and API discover. Both tools aim to help customers gain a greater visibility into the status of their applications overall API security.
Authentication vulnerabilities are at the center of security issues faced by two of the web's biggest companies this week. A German security firm showed that Google's Android platform sends some authentication tokens as plain text. Similarly, Facebook is requiring many developers to update their apps to fix a problem with "leaking auth tokens" due to iframe authentication.
Apple has announced an open bug bounty program. Until now, Apple's bug bounty program operated under an invite-only, selected researcher model. The private program only accepted bugs for iOS. The new program is open to all security researchers and covers iPadOS, macOS, tvOS, watchOS, and iCloud.