Yahoo Finance

Appdome Unveils Identity-First Mobile API Protection

First Layer 7 solution to bring verified application identity, trusted device context, precise location, and deep session risk into API Authorization. "New technologies, especially AI, have radically ...
MedCity News

API vulnerabilities in common mobile health apps leave patient information exposed

While most patients expect their health information to be secure when they download an app the reality might often be the opposite. Several widely-used mobile health apps have basic security flaws ...
VentureBeat

T-Mobile data breach shows API security can't be ignored

Enterprise security isn’t easy. Small oversights around systems and vulnerabilities can result in data breaches that impact millions of users. Unfortunately, one of the most common oversights is in ...
Phys.org

Team finds many of mobile applications are open to web API hijacking

Smartphones, tablets, iPads—mobile devices have become invaluable to the everyday consumer. But few consider the security issues that occur when using these devices. Modern mobile applications or ...
Business Wire

Mobile Health Apps Systematically Expose PII and PHI Through APIs, New Findings from Knight Ink and Approov Show

Report Reveals API-Focused Mobile Attacks Exploit Vulnerabilities Such as BOLA to Expose Patient PII and PHI, and the Pandemic-Driven Uptick in mHealth App Usage Exposes Millions of Patients’ Data SAN ...
Threat Post

T-Mobile Alerts 2.3 Million Customers of Data Breach Tied to Leaky API

T-Mobile alerts millions of its customers to a breach of its website that resulted in subscriber names, zip codes, phone numbers, email addresses and account numbers being stolen. Wireless carrier ...
Retail Dive

Mastercard jockeys for mobile payments domination with new API platform

In news announced today, Mastercard is introducing a proprietary API program that enables its partners to experiment with new technologies and interfaces, raising the innovation stakes for similar ...
Ars Technica

T-Mobile customer data plundered thanks to bad API

A bug disclosed and patched last week by T-Mobile in a Web application interface allowed anyone to query account information by simply providing a phone number. That includes customer e-mail addresses ...
VentureBeat

Mobile app developers: Here's an API for user acquisition

CEO David Dundas calls it the “Stripe for mobile advertising.” That might be a little over the top, but the point is made: Decisive is trying to make the hardest problem in mobile development as ...
Security Systems News

Inovonics announces mobile duress API integration with SecureTech Systems

WESTMINSTER, Colo.—Inovonics, an industry leader in highly reliable wireless solutions for life-safety applications, announced that its mobile duress system is fully integrated with SecureTech Systems ...
Computerworld

How to perform basic API authorization for mobile applications

You have a lot of options to choose from when laying out an authorization structure for mobile applications that communicate with a web API. For basic scenarios with low to medium security ...