#romancescams | SHARED INTEL: How attacks on web, mobile apps are being fueled by rising API vulnerabilities | romancescams | #scams

#romancescams | SHARED INTEL: How attacks on web, mobile apps are being fueled by rising API vulnerabilities | romancescams | #scams

Application programming interface. API. It’s the glue holding digital transformation together.


Related: A primer on ‘credential stuffing’


APIs are the conduits for moving data to-and-fro in our digitally transformed world. APIs are literally everywhere in the digital landscape, and more are being created every minute. APIs connect the coding that enables the creation and implementation of new applications.


However, APIs also manifest as a wide open, steadily expanding attack vector. Many organizations caught up in the frenzy of digital transformation don’t fully appreciate the gaping exposures APIs have come to represent.


I had the chance to discuss this with Matt Keil, director of product marketing at Cequence Security, a Sunnyvale, Calif.-based application security vendor that’s in the thick of helping businesses mitigate web application exposures. We spoke at RSA 2020. For a full drill down, please give the accompanying podcast a listen. Here are key takeaways:


Romance scams


Like many modern companies, Zoosk, the popular San Francisco-based dating site, rests on infrastructure that’s predominantly cloud-based. Zoosk’s core service is delivered via a mobile app that has 20 different registration and/or login pages – all are API driven.


Thus, it was well worth it for a hacking group to study Zoosk’s IT stack to reconnoiter its weak points.  Here’s how Keil breaks down what happened:

“The attackers deconstructed the mobile app and found all of these login and mobile app registration APIs, and so they started using them for attack purposes . . . they then began to use the stolen credentials to launch automated account takeovers.


“So if you were participating in that environment, and you were looking for a relationship, then your account might get taken over. And the next step we saw ..

Support the originator by clicking the read the rest link below.