Security News

This means that application security has moved beyond its "Doorman" status of asking "Who's allowed in?" Nowadays, application security should assume that users are already inside the application and focus on asking, "What do we allow them to do?", "What's the expected usage?" and "How do we stop undesirable behavior?". According to Rob Cuddy, the Global Application Security Evangelist at HCL, the fundamental shift enterprises must make in their approach to application security is that securing the application perimeter from external penetration simply doesn't make sense in the era of APIs.

RtBrick has announced a new Management API for its disaggregated routing software that simplifies the integration with existing OSS and BSS systems. Analysis Mason has recognized OSS and BSS integration as one of the major industry barriers to adopting network disaggregation, for example.

SMS alone may not be secure, but mobile phone numbers tethered to a SIM card are: they're a unique pairing that is difficult to tamper with or copy. It is now possible to prevent fraud and fake accounts while seamlessly verifying mobile users using the most cryptographically secure identifier they already have - the SIM card embedded in their mobile devices.

42Crunch has announced an integration of its API security services with Postman, the API collaboration platform for developers. 42Crunch provides enterprises with continuous protection at every stage of the API lifecycle reducing the cost of DevSecOps accelerating the delivery of production ready APIs.

Akamai announces platform security enhancements to strengthen protection for web applications, APIs, and user accounts. Akamai's machine learning derives insight on malicious activity from more than 1.3 billion daily client interactions to intelligently automate threat detections, time-consuming tasks, and security logic to help professionals make faster, more trustworthy decisions regarding cyberthreats.

Content delivery platform provider Akamai announced Wednesday platform security enhancements intended to increase cybersecurity protections for web applications, APIs and user accounts. Akamai said its machine learning algorithms leverage insights from a dataset of over 1.3 billion daily client interactions to automate threat detections, time-consuming tasks and security logic to help cybersecurity analysts make better decisions faster.

SmartBear has released a new plug-in for SwaggerHub API design to support IntelliJ IDEA, the popular Java-based integrated developer environment. API developers familiar with IntelliJ IDEA now have ready access to the OpenAPI compliant SwaggerHub API design platform to create, organize, and document APIs.

Approov introduced release 2.7 of the Approov API Shielding platform which lets companies of all sizes adopt leading-edge, affordable API cybersecurity protections for mobile-based applications. Approov aligns mobile app API security investments with the company's business growth and budget.

Qrypt announced a web portal that provides access to a quantum cryptography API. This will allow most businesses to integrate the highest level of security into their applications, according to the company. The company's Cloud Entropy Portal provides quantum-safe random numbers for any application, especially cryptographic key generation.

Security experts recommend setting basic security standards for all your data feeds, enlisting help from procurement and doing an API inventory. Hundreds of third-party apps in Android devices were given access to sensitive data logged by contact-tracing apps built on Google and Apple's API, according to reports from security researchers in April.