CSOonline

APIs are the new perimeter: Here’s how CISOs are securing them

Today’s attack surface is shifting from the endpoint to the API, and AI and third-party SaaS are worsening the issue. CISOs offer advice for API defense. Recent breaches suggest attackers are shifting ...
cybernews

Researchers find hundreds of exposed API keys providing access to AWS, GitHub, Stripe, and ...

Clearly, developers will have a lot on their plates – security researchers from Stanford University analyzed 10 million websites and found almost 2,000 API credentials across 10,000 of them. The keys ...
Bleeping Computer

Previously harmless Google API keys now expose Gemini AI data

Google API keys for services like Maps embedded in accessible client-side code could be used to authenticate to the Gemini AI assistant and access private data. Researchers found nearly 3,000 such ...
SiliconANGLE

Sauce Labs launches ‘programmable infrastructure’ for mobile testing with Real Device ...

Sauce Labs Inc., a continuous testing solutions provider, today announced the general availability of its Real Device Access API, changing how the company delivers mobile testing infrastructure and ...
Seeking Alpha

Alibaba offers low-cost AI coding plans with API access to up to four models

Alibaba's (BABA) cloud unit on Wednesday launched AI coding subscription plans that offer access and the ability to freely switch between four Chinese open-source models—Qwen3.5, GLM-5, MiniMax M2.5, ...
InfoQ

Chrome 144 Ships Temporal API: Advancing JavaScript Date/Time Standardisation

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Agent workflows make transport a first-order ...
SD Times

Google previews Developer Knowledge API, MCP server to make it easier to access docs for ...

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...
iapp.org

Who holds the keys? Navigating legal and privacy governance in third-party AI API access

In today's rapidly evolving artificial intelligence environment, organizations are increasingly relying on third-party application programming interfaces from platforms like OpenAI, Google and Amazon ...
Ars Technica

Wikipedia signs major AI firms to new priority data access deals

On Thursday, the Wikimedia Foundation announced API access deals with Microsoft, Meta, Amazon, Perplexity, and Mistral AI, expanding its effort to get major tech companies to pay for high-volume API ...
thecyberexpress

Critical IBM API Connect Vulnerability Enables Authentication Bypass

IBM has released security updates to address a critical IBM API Connect vulnerability that could allow remote attackers to bypass authentication controls and gain unauthorized access to affected ...
Bleeping Computer

IBM warns of critical API Connect auth bypass vulnerability

IBM urged customers to patch a critical authentication bypass vulnerability in its API Connect enterprise platform that could allow attackers to access apps remotely. API Connect is an application ...
IEEE

Analysing API Access Behaviour for Enhanced Security: A Machine Learning Approach

Abstract: With the advent of distributed microservices has led to a significant dependence on Application Programming Interfaces (APIs) for exchanging data and functionality integration. However, APIs ...