AppSentinels Named Leader and Outperformer in GigaOm Radar for API Security

The GigaOm Radar evaluates leading API security vendors across key capabilities such as discovery, testing, runtime protection, automation, and innovation. AppSentinels was positi ...
Infosecurity Magazine

Hackers Exploit Critical Langflow Bug in Just 20 Hours

Threat actors have demonstrated just how quickly they operate today after exploiting a critical open source vulnerability ...

iOS 26 Security Update Warning—iOS 18 Silent Compromise Exploit Alert

Apple confirms hidden iOS 26 security update, and Google confirms silent iOS 18 spyware compromise. What you need to know and ...

Update your iPhone now: Apple warns users as Google uncovers Russian-linked 'DarkSword' spyware threat

Apple has urged iPhone users to update their devices after a report revealed Russian-linked actors exploiting vulnerabilities ...
TechAnnouncer

Navigating the Landscape: Choosing the Right Open Source API Gateway for Your Needs

An API gateway is like the main entrance and security guard for all these conversations. But, the tech world moves fast, and just having any old gateway isn’t really going to cut it anymore. You need ...

Morphisec Unveils Adaptive AI Defense — Multi‑Layered Ransomware Protection for the AI Era

First‑of‑its‑kind Preemptive Cyber Defense Platform Provides Visibility into Shadow AI, Fortifies Endpoints, and Stops ...
Infosecurity Magazine

Average Number of Daily API Attacks Up 113% Annually

The average number of API attacks per organization in 2025 was 258, up 113% from 121 in 2024, it found. Some 61% of API attacks last year involved unauthorized workflows and abnormal activity, up from ...
Microsoft

Contagious Interview: Malware delivered through fake developer job interviews

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...
The Hacker News

Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets

Five malicious Rust crates and an AI bot exploited CI/CD pipelines and GitHub Actions in Feb 2026, stealing developer secrets ...

Google: Cloud attacks exploit flaws more than weak credentials

Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days.
Windows Report

Hackers Could Exploit Exposed Google API Keys to Access Gemini AI

Google is facing renewed security scrutiny after researchers revealed that publicly exposed API keys can be abused to access Gemini AI services. The issue centers on Google API keys embedded in client ...
GitHub

rest-api-exploit

Advanced security research lab on BOLA (CWE-285) and IDOR in RESTful architectures. Features a Flask-based API gateway and a Python-engineered exploit engine demonstrating Account Takeover (ATO) via ...