Because of its default settings, digital payments service Venmo exposes many of its users' transactions to the world through its public API. Using the API, researcher created a website, Public by Default, that visually details the implications of Venmo's public by default approach.
Security researchers have identified various vulnerabilities within the SoundCloud API that could have allowed attackers to gain access to user accounts and easily initiate DDoS attacks. Checkmarx Research conducted an investigation into the online social music platform.
Distil Networks has launched Bot Defense for API, a solution that protects API servers from bots. It protects API servers by determining if a human is using a verified browser or mobile device to gain access. It also determines if a browser is legitimate or an API client masquerading as a browser.