Many companies don’t properly secure APIs, the ubiquitous interface that lets technology programs communicate
The data breach of about 37 million T-Mobile US Inc. customers occurred through an attack on an API, or application programming interface, highlighting a risk facing many businesses.
APIs connect applications and share information in many settings, like mobile applications that connect to a social media platform, cars that drivers can unlock via an app, or backroom technology that moves data across different information systems.
Companies rely on APIs as they expand technology projects, often without proper security measures, cybersecurity analysts and researchers say.
Read the full article in the Wall Street Journal:
https://www.wsj.com/articles/t-mobile-breach-highlights-common-corporate-security-weakness-11674465825