Germany's giroAPI, MoneyHash $5.2M, BeyondTrust Compromised API Key
The API Changelog issue 2025.06
This is issue 2025.06 of the API Changelog, a mix of API news, commentary, and opinion. In this issue, you'll get to know the most relevant API-related information from the week of January 27, 2025. Subscribe now so you never miss an issue of the API Changelog.
News Highlight
DeepSeek is under investigation for allegedly using OpenAI's models to develop its AI, with Microsoft observing potential data exfiltration. DeepSeek's R1 model challenges US firms, impacting AI-related technology stocks and market value. See additional coverage on The Hindu, TechCrunch, Forbes, CoinMarketCap, Security Boulevard, and Inc..
DeepSeek's AI models caught attention for their affordability, but Wiz revealed significant security flaws in their cloud databases. The New York-based Wiz found DeepSeek's sensitive data, including chat history and API keys, were publicly accessible without a password. See additional coverage on Wiz, The Stack, Wired, Infosecurity Magazine, BleepingComputer, TargetTech, PC Gamer, and Forbes.
Also About DeepSeek:
Deepseek new open-source AI model outperforms its industry rivals and requires less computing power. The company's advances and competitive pricing may challenge Nvidia's market dominance amid tech and geopolitical tensions.
DeepSeek eclipsed rivals on the App Store, sporting the efficient DeepSeek V3 model and impacting global tech stocks. Despite hardware limitations and skepticism, it competes at lower costs, while facing cyber-attacks and temporarily limiting new registrations.
A cyberattack on DeepSeek, a fast-growing AI platform, has revealed critical AI cybersecurity concerns, including the need for user vigilance. DeepSeek's popularity surge has made it a prime target for criminals, highlighting risks like personal data exposure and the potential for AI misuse.
Microsoft will now host DeepSeek R1 on Azure, despite OpenAI's claims that DeepSeek misused its AI model outputs. AWS has also integrated DeepSeek R1 into its AI platforms, including Amazon Bedrock and Amazon SageMaker. See additional coverage on Microsoft and WinBuzzer.
This issue of the API Changelog was crafted with the help of Redocly.
Design, document, lint, mock, and test APIs effortlessly with Redocly. Create stunning, customizable docs, integrate with your CI/CD pipeline, and keep your APIs always up-to-date. Collaborate, customize, and scale—all with Redocly.
Announcements
ETSI SDG OpenCAPIF introduced Release 2.0.0, supporting 3GPP's CAPIF Release 18 with enhancements for API management. The update includes a new SDK, Sandbox for testing, and improved scripts, aiding in its use during the 1st OpenCAPIF Hackfest.
Ooredoo became the first in MENA to use GSMA Camara open-network APIs for 5G and IoT, starting in the Maldives with plans for a wider rollout. Timos Tsokanis highlighted the API's benefits in improving service reliability and securing online transactions, aiding both customers and developers.
PriceSpider launched its API Accelerate Suite offering easy integrations for Custom Commerce and Data Share to streamline workflows and enrich data for brands. The suite empowers companies to create personalized shopping experiences and bespoke analytics through seamless access to omnichannel data. See additional coverage on GlobeNewswire, and mrweb.
SambaNova's RDU Hardware boosts Hugging Face's Inference API with fast access to Llama 3 series and Qwen Models. Developers can easily integrate with minimal code changes by selecting SambaNova as the provider in Hugging Face's Inference Client.
Ateliere Creative Technologies has launched a new API for its cloud-native live production software, facilitating cost-efficient, sustainable workflows with up to 70% cost savings. Integrations with Cuez, Singular.live, and Megaphone TV enhance the system's collaboration, graphics, and audience interaction capabilities. See additional coverage on WebDisclosure, SVG Europe, and NewscastStudio.
Cohere Health® unveils Cohere Connect™, enhancing health plan PA processes to meet CMS-0057-F rule with integration-friendly APIs. Cohere Connect streamlines submission workflows, aiding compliance and accelerating care via advanced policy digitization and system integrations.
Viztech launched its Color Options API, integrating various color samples for Amish furniture on a single page. The company revolutionized Amish furniture retail by digitalizing product updates and introducing CGI models for better customer visualization.
Funding
MoneyHash, an MEA payment platform, raised $5.2m in pre-A funding led by Flourish Ventures, with notable investors participating. The firm aims to transform payments in emerging markets with its comprehensive and integrated payment system.
AI
Traefik Labs integrates with the Nutanix Kubernetes Platform, providing advanced API and AI management. The solution simplifies operations and scales traffic for AI workloads and microservices across hybrid multi-cloud environments.
N-able, Inc. announced their new Developer Portal, aiming to enhance IT service efficiency with AI-driven API integrations. The platform enables partners to customize IT solutions and automate development tasks swiftly. See additional coverage on businesswire, sdx Central, and Placera.
IBM's adoption of GenAI models aligns with its history of innovation and current initiatives in AI and modern computing systems integration. The company reported $5 billion in cumulative GenAI bookings and aims to integrate GenAI with its traditional server platforms.
OpenAI has launched its new o3-mini model in ChatGPT and its API services, promising faster and more accurate responses. The model is available for free with rate limits and also has enhanced versions for paid users, marking the first time free ChatGPT users can access reasoning models. See additional coverage on the decoder, Neowin, FastCompany, SiliconANGLE, maginative, Computerworld, The Pinnacle Gazette, and TechCrunch.
Fintech
Ozone API, a leader in open banking tech, partners with ProductCloud to simplify Australian firms' compliance with the Consumer Data Right legislation. Together, they provide a tech platform to rapidly deliver open APIs, leveraging their teams' roles in shaping UK and Australian open banking standards. See additional coverage on Open Banking Expo, The Paypers, The Fintech Times, and IBS intelligence.
Eastnets has launched a cloud-based Managed SWIFT Service on AWS, offering financial institutions secure, scalable connectivity solutions. The service provides SWIFT management with cost predictability and operates globally, drawing on Eastnets' expertise in compliance and payments.
Banco Sabadell has formed a partnership with Snowdrop Solutions to enhance its banking app's user interface. The collaboration aims to improve customer experience within the app.
The German Banking Industry Committee launched the giroAPI, a standardized API for innovative payment and account services. This initiative aligns with the openFinance framework and promises to enhance European competitiveness in financial technology.
Security
BeyondTrust disclosed the investigation results of a cybersecurity incident impacting 17 customers due to a compromised API key. The breach, leveraging a zero-day in a third-party app, led to unauthorized access and reset of local passwords.
CyberLink launched FaceMe Security 8.0, improving integration with VMS providers and simplifying IP camera setup. The update supports DIDO and HTTP APIs for access control and alerts, enhancing user experience and security efficiency. See additional coverage on Security Infowatch.com and ID Tech.
Salt Labs reported a now-fixed vulnerability in an unnamed travel service, enabling attackers to take over user accounts. Exploiting this flaw could compromise millions by manipulating authentication responses to hijack accounts and misuse airline points. See additional coverage on Infosecurity Magazine.