Ian Armas Foster

Ian Armas Foster

Writer

Ian Armas Foster is a researcher, big data analyst and writer at FireTail. Ian is also a content editor for Major League Soccer.

Articles by 

Ian Armas Foster

Browse all articles
Why You Should Take API Security Sirius-ly
December 30, 2022

Why You Should Take API Security Sirius-ly

SiriusXM, like Hyundai, designed and deployed weak APIs into the wild.

Read more
My Car Won't Start (Because Someone Hacked my API)
December 1, 2022

My Car Won't Start (Because Someone Hacked my API)

According to FireTail’s First Law of API Security: If an API can be hacked and compromised, it will be. And indeed, security researchers found a vulnerability in myHyundai’s API that allowed a potential attacker to access functions that the app would allow, including starting the car, turning the lights on and off, locking the car and more. 

Read more
Major Telecom API Hack
September 28, 2022

Major Telecom API Hack

This is a worst-case scenario for a breach of API security. Leaving an API endpoint online that does not require authentication is just asking for trouble, no matter how innocuous it may seem, as this provides an easy opening for hackers.

Read more
API with a Cache
September 2, 2022

API with a Cache

Researchers have proven that data stored in a browser's cache can be accessed.

Read more
Smart Tub Mine Machine
August 26, 2022

Smart Tub Mine Machine

Flaws in a smart hot tub's API expose data

Read more
Turning Leftover API Credentials into Twitter Bot Armies
August 8, 2022

Turning Leftover API Credentials into Twitter Bot Armies

Apps with leftover API credentials can be exploited by bad actors to create a bot army.

Read more
Messing with Texas' Data
July 18, 2022

Messing with Texas' Data

In March, the Texas Department of Insurance found that data relating to claims made between March 2019 and January 2022 had been compromised.

Read more
Reflecting on APIs in the time of COVID
July 18, 2022

Reflecting on APIs in the time of COVID

While the COVID pandemic is far from over, the era of the COVID exposure app may be. With Canada sunsetting its COVID alert app, it’s a good time to reflect on how in this case the API gave birth to the app instead of vice versa.

Read more

This site uses cookies

By using this website, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.

Got it!