Security News

Symantec API Flaws reportedly let attackers steal Private SSL Keys and Certificates (The Hackers News)
2017-03-28 09:54

A security researcher has disclosed critical issues in the processes and third-party API used by Symantec certificate resellers to deliver and manage Symantec SSL certificates. The flaw,...

How to establish strong microservice security using SSL, TLS and API gateways (TechRepublic)
2017-03-23 20:18

McShame: McDonald's API Leaks Data for 2.2 Million Users (InfoRiskToday)
2017-03-20 13:18

WordPress REST API Bug Could Be Used in Stored XSS Attacks (Threatpost)
2017-03-14 15:43

The recently patched REST API Endpoint vulnerability in WordPress could be leveraged to pull off stored cross-site scripting attacks.

Cloud Integration: Working with the SuccessFactors OData API (IT Toolbox Blogs)
2017-02-14 06:07

The micro-services and API economy revive SOA (i) (IT Toolbox Blogs)
2017-02-11 14:22

The micro-services and API economy revive SOA (IT Toolbox Blogs)
2017-02-09 16:22

Firefox Removing Battery Status API (Schneier on Security)
2016-11-07 18:59

Firefox is removing the battery status API, citing privacy concerns. Here's the paper that described those concerns: Abstract. We highlight privacy risks associated with the HTML5 Battery Status...

Apple, Mozilla kill API to deplete W3C battery-snitching standard (The Register)
2016-11-07 02:13

Hancitor Downloader Abusing APIs, PowerShell Commands (Threatpost)
2016-09-26 18:22

Developers behind the malicious downloader Hancitor have bolstered the malware again, this time with new delivery approaches that make it more difficult to detect.