Researcher Sam Curry revealed a flaw in a KIA website that gave anyone with the license plate number of a KIA vehicle access to vehicle controls and driver data – highlighting the dire state of smart vehicle cyber security.
API
Attacks on APIs demand a Security Re-Think
New threats demand that we transform the way we think about securing the endpoints. Case in point: APIs, writes Ross Moore.
Spotlight: Traceable CSO Richard Bird on Securing the API Economy
In this Spotlight episode of the Security Ledger podcast, I interview Richard Bird, the CSO of the firm Traceable AI about the challenge of securing application programming interfaces (APIs), which are increasingly being abused to steal sensitive data.
Malicious Automation is driving API Security Breaches
Removing the ability to automate against a vulnerable API is a huge step forward, as automation is a key enabler for both the exploitation and the extraction of large amounts of sensitive data.
T-Mobile: Leaky API Exposes Data on 37 Million
U.S. Telecommunications giant T-Mobile disclosed on Thursday that hackers obtained data on 37 million customers through a vulnerable API (application program interface). The disclosure was included in an 8-K filing with the U.S. Securities and Exchange Commission.
