Security News

Week in review: API security, keyloggers disguised as USB device chargers, online tracking (Help Net Security)
2016-05-30 12:00

Here’s an overview of some of last week’s most interesting news and articles: Faulty TLS implementation opens VISA sites, users to attack A group of researchers has discovered 184 HTTPS servers...

OWASP set to address API security risks (Help Net Security)
2016-05-23 19:03

OWASP has started a new project and is set to publish a new guide on security risks. The issue they aim to tackle this time is API security. The new OWASP API Security Project has been introduced...

Google Optimizes Safe Browsing API for Mobile (SecurityWeek)
2016-05-23 14:54

Google releases v4 Safe Browsing API (The Register)
2016-05-23 02:09

Protecting Cloud APIs Critical to Mitigating Total Compromise (Threatpost)
2016-05-19 18:20

When it comes to cloud computing, APIs more or less drive everything, but in the eyes of some researchers, existing security controls haven't kept pace.

Qualcomm security flaw impacts Android devices, project APIs (ZDNet)
2016-05-05 12:34

Week in review: The inconvenient truth about API security, and the perfect exfiltration technique (Help Net Security)
2016-04-18 12:45

Here’s an overview of some of last week’s most interesting news and articles: Uninstall QuickTime for Windows today! Trend Micro’s Zero Day Initiative has released advisories detailing two new,...

Websites take control of USB devices: Googlers propose WebUSB API (The Register)
2016-04-12 10:00

The inconvenient truth about API security (Help Net Security)
2016-04-11 13:15

Ovum Consulting asked IT and security professionals across a variety of industries globally about their use of APIs, adoption of API management platforms, and the security features included in...

‘Surreptitious Sharing’ Android API Flaw Leaks Data, Private Keys (Threatpost)
2016-04-04 21:04

Researchers have identified a vulnerability in an Android API in messaging apps like Skype and perhaps Signal, and Telegram, that could lead to privilege escalation and data loss, including private keys.