As AI agents become more autonomous, strong identity, access, and auditing controls are critical to keeping them secure.
Threat actors compromised AsyncAPI packages and weaponized trusted CI/CD workflows to distribute malware through npm. This ...
For years, Google told developers that Google API keys, used for Maps, Firebase ar other services, were not secrets. Yet later, those same keys were given access to a new Gemini API, exposing users to ...
Plugins have appeared on JetBrains' official marketplace that exfiltrate API keys for AI models. They do not contain typical malware that searches the computer for credentials but rather transmits a ...
Security researchers have uncovered a coordinated campaign designed to steal developers’ AI-related API keys via malicious plugins. Aikido Security found at least 15 integrated development environment ...
Google API keys aren't completely inactive after users delete them, giving attackers a small but significant window to continue abusing them. Joe Leon, researcher at Belgian startup Aikido Security, ...
Check Point researchers have found that popular AI coding assistants are unintentionally leaking sensitive internal data, including API keys. Standard development environments rely on strict rules. A ...
Web infrastructure provider Vercel disclosed a security breach that may have exposed customer API keys, prompting crypto projects to rotate credentials and review their code. Vercel traced the ...
Dozens of such keys can be extracted from apps’ decompiled code to gain access to all Gemini endpoints. Threat actors can extract Google API keys embedded in Android applications to gain access to ...
A flaw in Google's API key system has reportedly exposed mobile applications to unintended access to its Gemini AI platform. According to a CloudSEK advisory published on April 8, the issue affects ...
A large-scale cybersecurity study has revealed a serious global web security issue involving exposed API credentials tied to major platforms, including Amazon Web Services, Stripe, and OpenAI. After ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results