April 12, 2017
View all 1 Followers
View all 940 Related Articles
Related Articles (940)
Earlier this month, hacker Alexey V. Borodin discovered a method that allows some iOS app users to make "In-App Purchases" for FREE. Because Apple does not link purchases directly to individual customers or devices, a single receipt can be used for multiple transactions. Borodin's method takes advantage of this fact by fooling iOS apps into accepting fake purchase receipts and bypassing Apple’s authentication servers.
Flashpoint announced the fourth version of its business risk intelligence API. The latest feature added to the API is Risk Intelligence Observables (RIOs), which the company contends move beyond traditional security indicators. A number of Flashpoint partners have already utilized v4.
This is the third part of ProgrammableWeb’s series on Understanding the Realities of API Security based on testimony by ProgrammableWeb’s editor-in-chief David Berlind to the ONC’s API Security and Privacy Task Force. This part looks at how to determine who will get access to your API.