Application Programming Interface (API)

Professional working on a laptop with Bluetooth headphones: ScarCruft

news

ScarCruft Threat Group Using Malware to Steal Information From Bluetooth Devices

An advanced persistent threat (APT) group known as ScarCruft is now using malware to steal information off of Bluetooth devices.

May 14, 2019 | By David Bisson

news

IT professionals reviewing their microservices architecture.

article

Securing the Microservices Architecture: Decomposing the Monolith Without Compromising Information Security

Ditching monolith for microservices may be right for your organization, but it's critical to address the relevant security considerations early in the process.

March 21, 2019 | By Atul Chaturvedi

article

Security professional working to protect his organization from the SLUB backdoor.

news

SLUB Backdoor Receives Commands From GitHub and Communicates Through Slack

Security researchers have discovered that the new SLUB backdoor is receiving attack commands from GitHub and relying on Slack for communicating with its attackers.

March 12, 2019 | By David Bisson

news

Developers working on a data security application.

article

Wisdom of the Crowd: How the App Store Model Drives Innovation in Data Security

Application developers can accelerate the pace of innovation in data security by making it easy for third parties to integrate with their platforms.

October 19, 2018 | By Calvin Bench

article

article

Open Banking and PSD2: Disruption or Confusion?

Open banking promises to make financial services apps more convenient, but there's still a lot of confusion about how financial firms will protect customer data from rogue third parties.

January 31, 2018 | By Indy Dhami

article

news

Insecure Apple Authorization API Still Used

An older MacOS API is still being used by many developers, despite risks. While a new API has been released, it isn't considered to be a good replacement.

August 28, 2017 | By Larry Loeb

news

A person using a tablet with a conceptual image of apps above the screen.

news

Application Security Report Calls Out Problems in Mobile, IoT Devices and DevOps

High-Tech Bridge released a report at InfoSecurity Europe 2017 highlighting some of the fastest growing application security threats to developers.

June 8, 2017 | By Shane Schick

news

An online banking customer conducting a transaction on a smart tablet.

article

Govern Your API Banking Environment

As the financial services landscape increasingly shifts toward digital solutions, it is more crucial than ever to secure API banking environments.

February 27, 2017 | By Meriç Degirmenci

article

The new Google API relies on digital certificate that have been stored in the hardware-based Trusted Platform Modules included in every Chrome OS device. The TPM certifies that the security state of the devices has not been altered.

news

New Google API Will Securely Verify Chrome Devices

The new Google API allows a network service to obtain a hardware-backed cryptographic guarantee of the identities of a device and the user accessing it.

September 19, 2016 | By Larry Loeb

news

The X-Force Exchange API has undergone two significant changes: Anonymous access disappeared and rate limits appeared. These differences change the authentication method and the details of the responses that clients should expect.

article

Re-examining the IBM X-Force Exchange API

The X-Force Exchange API has undergone two significant changes since it went public in April 2015: Anonymous access disappeared and rate limits appeared.

August 1, 2016 | By Doug Franklin

article

InterPlanetary Storm Malware Using IPFS P2P Network to Hide Its Activities

Threat Actors Use Targeted Attack Tools to Distribute Cryptocurrency Miners, Ransomware

XENOTIME Threat Group Now Targeting Electric Utility Organizations

Fraudsters Abuse Smartphone Google Calendar Feature to Push Through Scam Offers

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

IoMT Security: A Comprehensive Approach to Mitigate Risk and Secure Connected Devices

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Critical RCE Vulnerability in TP-Link Wi-Fi Extenders Can Grant Attackers Remote Control

One Big Lesson From the Cyber Range to Help Solve Confirmation Bias

Observations of ITG07 Cyber Operations

Getting Quantum Ready and What This Means for Cryptography

Podcast: Development Agility and Open-Source Vulnerability Prioritization

Podcast: Lateral Movement: Combating High-Risk, Low-Noise Threats

Podcast: Travel Security: Why Data Safety Doesn’t Get a Day Off

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Webinar: Under the Radar: IBM QRadar Demo Series

Webinar: Appliance Networking Topics

Webinar: zSecure Real Time Feeds: Alert vs. Audit

Webinar: zSecure Real Time Feeds: Alert vs. Audit

Tag: Application Programming Interface (API)

ScarCruft Threat Group Using Malware to Steal Information From Bluetooth Devices

Securing the Microservices Architecture: Decomposing the Monolith Without Compromising Information Security

SLUB Backdoor Receives Commands From GitHub and Communicates Through Slack

Wisdom of the Crowd: How the App Store Model Drives Innovation in Data Security

Open Banking and PSD2: Disruption or Confusion?

Insecure Apple Authorization API Still Used

Application Security Report Calls Out Problems in Mobile, IoT Devices and DevOps

Govern Your API Banking Environment

New Google API Will Securely Verify Chrome Devices

Re-examining the IBM X-Force Exchange API