Facebook discovered a security attack that potentially compromised 50 million user accounts in late September. While Facebook has now reported that the actual affect was minimal, the company has released a tool that helps app developers understand whether their users were affected or not.
This is the introduction to ProgrammableWeb’s series on Understanding the Realities of API Security. It is taken from the overview of David Berlind's written testimony to the ONC's API Security and Privacy Task Force. The testimony is based on two years of research into a number of API attacks.