Security News

Four common API vulnerabilities and how to prevent them
2018-07-03 12:00

Proper security measures are one of the most important aspects of building an application programming interface, or API. It’s great for an API to connect systems and give developers access to the...

The Next Big Cyber-Attack Vector: APIs
2018-06-28 17:56

With cyber-attacks on enterprise networks becoming more sophisticated, organizations have stepped up perimeter security by investing in the latest firewall, data and endpoint protection, as well...

Ping Identity Acquires API Security Firm Elastic Beam
2018-06-27 11:45

Identity management solutions provider Ping Identity on Tuesday announced the acquisition of Elastic Beam, a company that specializes in detecting and blocking attacks aimed at application...

Facebook Defends Against Device-Integrated APIs Policy, But Concerns Remain
2018-06-04 17:17

Facebook is again in hot water after an article alleged it struck deals with device-makers to access users' data.

Phone tracking service LocationSmart exposed API, allowing anyone to track you
2018-05-18 12:46

An unsecured API used in a product demo can be exploited by attackers to track phone locations without the consent of end users.

Tens of Thousands of Malicious Apps Using Facebook APIs
2018-05-01 14:53

The apps are deemed malicious by doing things such as capturing pictures and audio when the app is closed, or making an unusually large amount of network calls.

WebAuthn API helps businesses ditch passwords for biometric security
2018-04-11 12:39

The API, which has almost reached formal adoption, provides a vendor-neutral method for organizations to use password-less authentication.

No password? No worries! Two new standards aim to make logins an API experience
2018-04-11 05:30

WebAuthn and CTAP published this week A pair of authentication standards published this week have received endorsement from Mozilla, Microsoft and Google: the WebAuthn API, and the FIDO Alliance's...

Widespread API use heightens cybersecurity risks
2018-01-31 11:00

A new Imperva survey showed a heightened concern for cybersecurity risk related to API use. Specifically, 63 percent of respondents are most worried about DDoS threats, bot attacks, and...

Secure coding in Java: Bad online advice and confusing APIs
2017-10-03 15:15

For programmers and software developers, the Internet forums provide a great place to exchange knowledge and seek answers to concrete coding conundrums. Alas, they are not always the source of...