Looking for the FullContact Address Book App? You can now find it at Contacts+

Learn More

Archive for April, 2016

Never Put Secrets in URLs and Query Parameters

URLS and query parameters aren’t secure. They should never contain sensitive or important information (passwords, static shared secrets, private information, etc). It is asking for trouble, something we here at FullContact have discovered first-hand. Recently, a security researcher came to us with 75 of our customer’s API keys, and noted that they could get many…