Infosecurity Magazine

Cursor Extension Flaw Exposes Developer API Keys

Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX ...
heise online

Google's unprotected API keys a security and cost risk due to Gemini AI

Google is working to fix a problem with its API keys after security researchers pointed out possible misuse. This is because the keys for accessing Google's cloud services, such as Maps or Firebase, ...
SecurityWeek

Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure

Hackers rushed to target a critical LiteLLM SQL injection flaw to steal keys, credentials, and environment-variable ...
SiliconANGLE

API security playbook: What you need to do to protect your APIs

Application programming interfaces are modern application architecture solutions that enable digital business by improving connectivity and enabling composable architectures. They are used to support ...
CIO

‘Silent’ Google API key change exposed Gemini AI data

Google Cloud API keys, normally used as simple billing identifiers for APIs such as Maps or YouTube, could be scraped from websites to give access to private Gemini AI project data, researchers from ...
Dark Reading

Thousands of Mobile Apps Leaking Twitter API Keys

Thousands of mobile apps are leaking Twitter API keys — some of which give adversaries a way to access or take over the Twitter accounts of users of these applications and assemble a bot army for ...
Business Wire

Cequence Security Unveils Comprehensive API Security Assessment Services

SANTA CLARA, Calif.--(BUSINESS WIRE)--Cequence Security, a pioneer in API security and bot management, today announced the launch of its new API Security Assessment Services. Designed to provide ...
VentureBeat

Why enterprises can’t afford to overlook API security in 2023

Join our daily and weekly newsletters for the latest updates and exclusive content on industry-leading AI coverage. Learn More Application and API security is vital for protecting modern enterprise ...
Infosecurity-magazine.com

Thousands of Algolia API Keys Could Expose Users' Data

Over 1500 apps have been found leaking the Algolia API key & Application ID, potentially exposing user data. Security researchers at CloudSEK shared the data with Infosecurity before publication, ...
Bleeping Computer

JumpCloud resets admin API keys amid ‘ongoing incident’

JumpCloud, a US-based enterprise software firm is notifying several customers of an "ongoing incident." As a caution, the company has invalidated existing admin API keys to protect its customer ...
Security

Salt Security and CrowdStrike introduce comprehensive suite of API security integrations

Salt Security, an API security company, today announced API integrations with the CrowdStrike Falcon platform to enhance and accelerate API discovery, posture governance, and threat protection.
TechCrunch

Sumo Logic urges customers to reset API keys following security breach

Sumo Logic, a U.S.-based cloud data analytics and log analysis company, is urging users to reset API keys after discovering a security breach. In a security notice published this week, Sumo Logic ...