The Hacker News

Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration

Claude Code flaws allow remote code execution and API key theft via untrusted repositories; three bugs fixed across 2025–2026 releases.
Cybernews

Hackers can exploit thousands of exposed Google API keys to access Gemini and steal data

Exposed Google API keys previously not considered secrets can now inadvertently grant attackers access to sensitive Gemini ...
Windows Report

Hackers Could Exploit Exposed Google API Keys to Access Gemini AI

Over 2,800 exposed Google API keys may allow unauthorized Gemini AI access, risking data leaks and massive API charges.
SecurityWeek

API Threats Grow in Scale as AI Expands the Blast Radius

Most API vulnerabilities are fast, remote, and easy to exploit. Attackers take full advantage of these attributes.
Security Boulevard

Inside Modern API Attacks: What We Learn from the 2026 API ThreatStats Report

API security has been a growing concern for years. However, while it was always seen as important, it often came second to application security or hardening infrastructure.  In 2025, the picture ...
SiliconANGLE

API and bot attacks cost businesses $186M annually, new report finds

A new report out today from Imperva Inc., a Thales company, is warning that vulnerable application programming interface and bot attacks are costing businesses up to $186 billion annually as incidents ...
Business Wire

Traceable Releases 2025 State of API Security Report: API Breaches Persist as Fraud, Bot Attacks, and Generative AI Increase Risks

SAN FRANCISCO--(BUSINESS WIRE)--Traceable AI, the industry's leading API security company, today released its second annual research report—the 2025 Global State of API Security. The findings ...