Android 11 will add a new App Compatibility feature to ease testing
02 13, 2020
SoundCloud repairs API-related security snafus after Checkmarx research
02 13, 2020
Online audio distribution platform and music sharing website SoundCloud has fixed several security vulnerabilities affecting its API that could have otherwise resulted in hackers taking over accounts, launching denial of service attacks, and exploiting the service.
All weaknesses were found in an investigation conducted by the Checkmarx Security Research team to study the state of API security in leading online platforms.
Vulnerabilities found in SoundCloud’s API were responsibly disclosed by the Checkmarx team to the company, which they said had acted in a ‘very cooperative’ fashion.
Checkmarx security researcher Paulo Silva said: “We have no hint of attackers exploiting these vulnerabilities directly. Nevertheless, we found evidence of past incidents that could have been caused by a Broken Authentication issue exploitation.
“Having SoundCloud users as a target, broken authentication and user enumeration could have been used together to take control of user accounts,” Silva added. “Unfortunately, industry-wide incidents that expose user data, such as usernames and passwords, are quite common, making leaked data generally available.”
Earlier this week, SoundCloud raised $75 million (£58m) in funding from satellite radio giant SiriusXM, which also has an ad partnership with SoundCloud. The raised money would be used towards product development and launching new services.
By Developer
Older articles
Huawei sets out its post-Google plans with release of HMS Core 4.0
Huawei has unveiled further details about its replacements to Google’s services as it prepares to lose access following US sanctions. During an event in London, Huawei made its pitch as to why developers should port their apps to HMS (Huawei Mobile Services). The first reason is a cash incentive. Huawei announced that it will use a pot of £20 million ($26 million) to help persuade developers to bring their apps to HMS.
02 13, 2020
Bitcoin developer reports 42% drop in build time, 44% fewer packages
A developer contributing to Bitcoin has published a report detailing improvements made to the world’s largest cryptocurrency. In his report, Michael Ford highlights that the number of packages in Bitcoin Core 0.19.99 has been reduced by 44 percent since version 0.13.2.
02 13, 2020
HackerRank developer skills report: Go remains most desired language, JavaScript best known
A survey report released by HackerRank has found that developers find JavaScript the most-known language, Go most-wanted to learn, and full-stack development skills the most desired in the job market.
02 13, 2020
Analysis shows the 16 most in-demand programming skills
A new analysis highlights the most in-demand programming skills looked for by employers as we begin the new decade. Nick Kolakowski, a writer for Dice Insights, analysed data from Burning Glass – an analytics software company providing real-time data on job trends – and found that most job postings in the past 30 days wanted SQL skills.
02 13, 2020
