“Everyone feels the need to write a custom authentication protocol” says George Reese, which he claims is one of the things he learnt working on a programming API for cloud providers and Saas ...

Growing use of APIs give attackers more ways to break authentication controls, exfiltrate data, or perform disruptive acts.

Many API authentication measures are easily exploitable. For example, some APIs use API keys or tokens to authorize client access to datasets.

GitHub users accidentally exposed 12.8 million authentication and sensitive secrets in over 3 million public repositories during 2023, with the vast majority remaining valid after five days.

Click Studios, the company behind the Passwordstate enterprise-grade password manager, has warned customers to patch a high-severity authentication bypass vulnerability as soon as possible.

The Public Services Commission (PSC) is looking for a local firm to consult on the development of an API for a biometric authentication programme. This was revealed in the Government Gazette that ...