API
API
An application programming interface (API) is the interface that a computer system, library or application provides in order to allow requests for service to be made of it by other computer programs, and/or to allow data to be exchanged between them.
Definitions provided by Wikipedia - The Free Encyclopedia
API Related Products
Used in combination with RSA SecurID authenticators, the RSA SecurID Appliance is designed to validate the identities of users by requiring the user to present a PIN (something they know) along with their token code (something they have) before granting access to valuable network resources.
More information
BCAPI (BreadCrumb Application Programming Interface) is a low-level API for managing the configuration and reading the state of any Rajant BreadCrumb devices running firmware version 10.0 or higher. Rajant BreadCrumb devices are portable wireless systems that utiliSe a meshing protocol called InstaMesh for fixed and mobile applications in military, mining and first responder scenarios.
More information
API Related Industry News
Microsoft aims to save users from themselves XP SP2 has features to encourage automatic downloads and installation of updates Most security issues and virus outbreaks happen because people don't know how to protect themselves or don't bother to do what they know they should. In the latest update to Windows XP, Microsoft Corp. has focused on helping people become more aware of what they need to do, and encouraging them to actually do it, Lead Program Manager for Service Pack 2 Ryan Burkhardt said......
[more] Corporations Get Ready for Wi-Fi Universities and health care organizations have led the way in Wi-Fi installations -- and done the bleeding that takes place on the cutting edge. Now, U.S. corporations are learning from these leaders and evaluating how wireless LANs (WLANs) can benefit their companies.
Corporate IT executives came to the Angelbeat Mobility, Security, VoIP Executive Briefing on Monday to hear from vendors of wireless monitoring and security applications hoping to get their busi......
[more] Where, oh where, is my Windows firewall? I have a problem: I can't seem to find a good host-based firewall for my Windows servers. In fact, people constantly ask me what I recommend and I find myself with no good answer.
Even though most of my servers are already behind firewalls, I like having additional protection on the server itself. Sometimes I use remotely co-located servers where I have no firewall, and that makes me completely dependent upon software on the server itself.
It seems lik......
[more] Akonix A-Series Appliances Offer Native API Support for Jabber XCP 5.1 Akonix Systems, Inc., provider of the most deployed instant messaging (IM) security and compliance products in the world, today announced that version 5.1 of L7 Enterprise on its A-Series IM Security Appliances is the first product to integrate with Jabber, Inc.'s Jabber Extensible Communications Platform (Jabber XCP) 5.1 at the application programming interface (API) level. The combination of Akonix L7 Enterprise and Akonix......
[more] Akonix Enhances Instant Messaging Security Gateway to Facilitate Corporate Risk Management Akonix Systems, Inc., provider of the most deployed instant messaging (IM) security and compliance products in the world, today introduced Akonix L7 Enterprise v6.0, a risk management platform designed to enforce corporate compliance, security and prevent liability issues associated with IM communications. Employees have quickly learned to replace email with IM correspondence to get around corporate secur......
[more] Windows Vista firewall weakness can be corrupted by attackers The firewall in Microsoft's Windows Vista operating system (OS) can be compromised to perform prohibited functions, according to new research from Symantec. Microsoft has touted Vista as its most secure platform to date, implementing a plethora of new security features, including an improved firewall.The software giant's OS is, by default, configured to block all third-party and unknown network communications, unless the user clicks o......
[more] Firefox also vulnerable to Windows cursor flaw Researchers are warning users of Mozilla's Firefox 2.0 on Windows computers that they are vulnerable to attacks exploiting the animated cursor (.ani) bug. Alexander Sotirov, a researcher for the security company Determina who discovered the vulnerability, posted a demonstration online of an .ani exploit that hijacks a Windows machine using the Firefox web browser.There is no flaw in the Firefox source code itself, but an attacker could exploit the W......
[more] Microsoft patches Windows Vista, IE 7 Microsoft released six security bulletins to fix 15 flaws across its product line Tuesday, including Windows XP, Vista and Internet Explorer 7. Attackers could exploit the most serious flaws remotely to run malicious code on victims' machines.Patch management experts said IT administrators should put top priority on deploying the patches for Internet Explorer and Windows, particularly those included in MS07-031, 032 and 033.Don Leatham, director of solution......
[more] iPhone 'data-stealing' hack claimed Security researchers claim to have hacked the iPhone. The iPhone, Apple's first attempt at manufacturing a mobile phone, was launched to much hype in the US at the end of June.This is the first serious attempt to hack the device, although hackers started work on the device within days of its launch.Security researchers from penetration testing company Independent Security Evaluators (ISE) say they have written two exploits that take advantage of "serious......
[more] eBay users targeted by ID-stealing botnet Online auction site eBay has been targeted by identity thieves, who are wielding a botnet that uses brute force to uncover valid account log-in information, according to security company Aladdin Knowledge Systems. The attacks against eBay may have started as long ago as early August, said Ofer Elzam. He said that he and other researchers at the Tel Aviv-based security company have not been successful in notifying eBay of their weekend findings. Accordin......
[more] Google's OpenSocial app hacked in 45 minutes The first application launched under Google's OpenSocial API program has been taken down, shortly after it was discovered a hacker could use it to change user profiles. The application was built by third-party developer RockYou to run on Plaxo, a social-networking website that allows its members to update and synchronise Microsoft Outlook, Mozilla Thunderbird and Mac OS X calendars and address books.A developer who uses the nickname "harmonyguy&q......
[more] Websense offers data leak protection beta Websense is to release an endpoint security product for content protection next year, along with an accompanying set of open APIs for third-party vendors to work with. Devin Redmond, director of security products at Websense, said the product, tentatively called Content Protection Suite Endpoint, was available in beta for desktops based on Windows 2000 or XP and up. The endpoint security software, which works to ensure sensitive content isn't copied int......
[more] iPhone SDK exceeds developer expectations Apple's iPhone SDK offers far more than many developers expected, according to developers that InfoWorld spoke with after the long-awaited SDK unveiled today. "It looks like this is what everybody wanted," said Tony Meadow, principal at Bear River Associates, a mobile application development vendor. "Apple is doing it the right way." Forrester Research analyst Simon Yates, concurred, saying that the Apple SDK should please three core constituencies: Dev......
[more] Microsoft offers way to share data with social networks Microsoft is opening up its Windows Live platform to allow users to share their contact lists with five social-networking sites, some of which until now have been accessing such data through the back door. The move is intended to give users control of their data and to remove the need for the kind of work-arounds used to share such data today. The current arrangement "unduly puts customers at risk for phishing attacks, identity fraud......
[more] Adobe patches Flash clickjacking and clipboard-poisoning bugs Adobe Systems Inc. patched five vulnerabilities in Flash today, including one that could be used in "clickjacking" attacks to secretly spy on users through their webcams. That fix, and others, were rolled into Flash Player 10, the new version of the popular browser plug-in the company launched earlier today. Previously, Adobe had promised that Flash 10 would fix the clickjacking bug and another flaw that has been used by hackers for m......
[more] Virtualisation 'next frontier' for hackers Virtualisation, with its rapid pace of adoption, is becoming a focus for attackers, but not all businesses are aware of, or act on the risks adequately, according to market observers. Graham Titterington, principal analyst at Ovum, told ZDNet Asia in an email interview that, with the increasing prominence of virtualisation, threats to virtual machines (VMs) are becoming more significant. "There is little evidence of attacks on the foundation layer......
[more] Websense acquires Defensio Websense has acquired Defensio, a technology company which focuses on the problem of spam on the Web. The acquisition enhances the Websense ThreatSeeker Network by highlighting spam posted as comments on social Web sites, including blogs, user forums and social networking sites. The company will also benefit from Defensio Web services so third-party Web 2.0 developers can embed Websense into their applications.“This acquisition puts Websense years ahead of the s......
[more] Sun challenges Amazon for cloud dominance Move over, Amazon. The leading provider of cloud services is about to get some serious competition from Sun Microsystems, which made its entrance into cloud computing Wednesday with plans to offer compute and storage services built on Sun technologies, including OpenSolaris and MySQL. Developers building for the public cloud platform, called Sun Cloud, will be able to leverage Sun's cloud APIs to interoperate with other clouds and cloud-based applicatio......
[more] ATM malware appears, Diebold issues security update Diebold, which has fielded recent criticism over the reported insecurity of its voting machines, is now fighting off news that its ATMs also can be compromised. Security firm Sophos reported this week that it received three samples of a trojan that was customised to run on Diebold-manufactured cash machines in Russia, said Graham Cluley, Sophos' senior security consultant. The malware was able to read card numbers and PINs -- then when the att......
[more] Mozilla denies new Firefox bug is security risk Mozilla is denying that a bug that crashes Firefox 3.5 is a security vulnerability, countering earlier reports that the company's latest browser contained a flaw even though it had just been patched. In a Sunday post to Mozilla's security blog, Mike Shaver, the company's vice president of engineering, said that the bug, which had originally been disclosed on the milw0rm hacker site, is not a vulnerability. "The reports by press and various se......
[more] Twitter now blocking bad URLs, but imperfectly Hoping to deal with a growing problem, Twitter has quietly introduced a feature to prevent users from posting links to malicious Web sites. But security experts say that it can be easily circumvented. The feature was first noticedMonday by Mikko Hypponen, chief research officer with security company F-Secure. When someone tries to post a link to a malicious Web site, Twitter pops up a short notification saying "Oops! Your tweet contained a URL......
[more] Twitter fails to fix massive cross-site scripting bug, researcher says A vulnerability in the popular microblogging Twitter service remains unfixed and can be used by criminals to hijack accounts or redirect users to malicious Web sites, a developer claimed today. James Slater, a software developer who blogs on the site of David Taylor, a U.K.-based search optimization specialist, said that Twitter has not successfully plugged a hole he disclosed yesterday.The cross-site scripting bug in Twitter......
[more] Brute-force attacks target two-year hole in Yahoo! Mail Scammers are exploiting a two-year-old security hole in Yahoo's network that gives them unlimited opportunities to guess login credentials for Yahoo Mail accounts, a researcher said. The vulnerability resides in a web application that automates the process of logging in to the widely used webmail service. Because it fails to carry out a variety of security checks followed by the login page Yahoo! Mail users typically use, it's providing cr......
[more] Microsoft to let third-party apps work with Outlook's PST files Microsoft Monday said it will provide patent- and license-free use rights to the format behind its Outlook Personal Folders (known as PST files), opening e-mail, calendar, contacts, and other information to a host of applications such as antimalware or cloud-based services. Documenting and publishing the .pst format could open up entirely new feature sets for programs such as search tools for mining mailboxes for relevant corporate......
[more] Extra spam and malware security for bit.ly Bit.ly has partnered with security firms to bolt improved anti-spam and malware protection onto the URL shortening service. VeriSign’s iDefense IP reputation service will be used to screen against links that point to blacklisted sites hosting exploits, malicious code, botnet command and control servers or other nefarious activity. Websense Threatseeker cloud service will be used to peer behind the web content behind bit.ly links in real time, using beh......
[more] Adobe won't patch latest PDF zero-day until Jan. 12 Adobe won't patch the newest critical vulnerability in its PDF viewing and editing software for another four weeks, even though attack code has been publicly released. In an update yesterday to the security advisory it issued Tuesday, Adobe set the patch date as Jan. 12, 2010, which is also the next regularly-scheduled quarterly security update for Adobe Reader and Adobe Acrobat. Most of the advisory was dedicated to confirming the bug -- whic......
[more] Data Loss Protection and Your CRM System CRM systems are full of data that's valuable to your company. Or at least, it better be. But CRM systems are not at the top of the list for external hackers, so why should it be on your priority list for an ILP/DLP system? Let's start by clearing up a misconception: the external hacker is rarely your biggest concern, particularly for a CRM system. The most dangerous breaches come from your own employees, particularly the disgruntled ones. Given the numbe......
[more] Twitter embeds itself in the web Twitter has announced technology that it hopes will further embed the service into the fabric of the web. @anywhere, as it is known, will allow people using websites such as Amazon or the New York Times to follow new users or share media directly from the page. It was unveiled at the South by Southwest festival in Austin, Texas.It is similar to Facebook's Connect service that allows people to log in to other websites using their Facebook details and interact wit......
[more] The seven deadly sins of cloud security A security expert warns organisations making a foray into cloud computing that knowing familiar terms like multi-tenancy and virtualisation doesn't mean they understand everything about putting applications in the cloud. In the world of cloud computing, those technologies are thrown together to create a new class of applications with their own unique set of governance rules, said Jim Reavis, executive director with the Cloud Security Alliance (CSA)."......
[more] Researcher shows new clickjacking methods at Black Hat A computer security researcher has released a new browser-based tool that can be used to experiment with next-generation "clickjacking" attacks along with details of the four new techniques. Clickjacking is a style of attack where a user is tricked into clicking on certain parts of a Web page with hidden buttons that perform malicious actions. The hidden buttons are delivered by an invisible iframe, which is a window that brings other cont......
[more] Free Sophos tool blocks Windows shortcut attacks Microsoft won't endorse measure, tells user to cripple shortcuts instead The security firm Sophos released a tool on Monday that it claimed will block any attacks trying to exploit the critical unpatched vulnerability in Windows' shortcut files. The tool, dubbed "Sophos Windows Shortcut Exploit Protection Tool," will protect users until Microsoft releases a permanent patch for the problem, said Chet Wisniewski, a senior security advisor......
[more] Google, Bing: A hacker's best friends Security experts long ago noticed that powerful search engines like Google could be used as effective tools for ferreting out sensitive data about individuals. In past years, security researchers such as Johnny Long were able to show how advanced Google search queries and features like Google Code Search could make it easy to identify vulnerable systems online. Sadly, malicious hackers and organized crime groups appear to have learned those lessons better th......
[more] Critical flaws discovered in widely used embedded OS Two critical vulnerabilities have been discovered in mission-critical systems used in 500 million devices, including VoIP phones, telecom equipment, military routing devices, automobile controls and spacecraft. Last week at the Security B-Sides and DEFCON conferences in Las Vegas, HD Moore, chief security officer at Rapid7 and founder and chief architect of Metasploit, disclosed two critical vulnerabilities in VxWorks, which is used to power......
[more] McAfee bolsters endpoint security, management software McAfee on Tuesday launched new endpoint security and management products intended to protect users in what's becoming an increasingly mobile world where workers are not tied to particular locations and may be using hand-held smartphones. "Work is no longer a place, it's an activity," says Martin Ward, McAfee senior director of risk and compliance, adding further implications are that the IT infrastructure "is no longer in one......
[more] Zero-day Windows flaw goes public A zero-day privilege escalation flaw has hit Windows that could allow hackers to bypass user account control security found in Vista and Windows 7. The flaw was posted briefly on a programming education site and could allow even limited user accounts to execute code in kernel mode, although researchers have found the vulnerability exploited on its own would not allow remote code execution. "This is a serious flaw because it resides in win32k.sys, the kernel......
[more] Andy Mulholland: Decentralising without losing control Each week we ask chief technology officers and other high-profile tech decision-makers three questions. Answering today is Andy Mulholland, chief technology officer of IT services and business consultancy Capgemini. With headquarters in Paris, France, the technology and outsourcing firm employs more than 106,000 people in 35 countries. During the most recent financial year, ending in December 2009, the company made a profit of 178m euro on a......
[more] Survey: Corporate iPad adoption jumps -- driven by businesses themselves If you wanted proof that the iPad is not merely a consumer device but a hot business tool, Good Technology revealed today that 28 percent of the new device activations by its mobile management customers -- mainly North American large businesses, with thousands of devices managed -- were for iPads in December 2010. The rest were of iPhones and Android devices, at 46 percent and 36 percent, respectively. Good is also now seei......
[more] WordPress.com hack could put premium users at risk Malicious hackers have successfully breached WordPress.com servers and potentially made off with sensitive bits of the publishing platform's underlying code. The breach could impact premium customers using WordPress for their websites, such as Flickr, NASA, Yahoo, and the New York Times. The news comes among a surge of recent hack attacks against high-profile companies, including RSA, Epsilon, and HBGary. Additionally, it marks the yet another m......
[more] Facebook denies privacy breach allegations by Symantec Facebook today denied that it may have accidentally exposed personal user data to advertisers and other third parties for several years, as claimed this week by two security researchers at Symantec Corp. The researchers in a blog post Tuesday noted that a Facebook programming error -- since fixed -- could have allowed advertisers to access member profiles, photographs and chat messages and to post messages and mine personal data from them. A......
[more] How to Get Smarter About CRM Security If Value Engineering is the identification of different implementation strategies to achieve the business goal, the ultimate in value engineering is to identify requirements that don't need to be done in the first place. Although security and access control would seem to be a poor candidate for this kind of requirements elimination, in many situations the technical solutions are so clumsy and expensive that there's almost no ROI. This can be politically touc......
[more] Google plugs Wi-Fi sync security hole in Android Google today confirmed that it's starting to roll out a server-side patch for a security vulnerability in most Android phones that could let hackers snatch important credentials at public Wi-Fi hotspots. "Today we're starting to roll out a fix which addresses a potential security flaw that could, under certain circumstances, allow a third party access to data available in Calendar and Contacts," said a Google spokesman. "This fix re......
[more]
