Hackers are exploiting two authentication bypass vulnerabilities in the Qinglong open-source task scheduling tool to deploy ...

Hackers rushed to target a critical LiteLLM SQL injection flaw to steal keys, credentials, and environment-variable ...

Suade, a next-generation platform automating regulatory reporting for financial institutions through an API-first ...

Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX ...

A severe vulnerability in the AI-powered development tool Cursor allows installed extensions to access locally stored API keys and session tokens without user action, according to LayerX researchers.

A single third-party OAuth integration can become a direct path into your environment. Push explains how the Vercel breach ...

The CIAM platform that got you to 1 million users won't get you to 10 million AI agents. Legacy authentication built for ...

A critical pre-authentication SQL injection vulnerability in BerriAI’s LiteLLM Python package came under active exploitation ...

India’s retail trading landscape is entering a stricter phase in 2026, and currency traders may feel the impact sooner than many expect. SEBI’s push for tighter control over digital market access, ...

A new agreement between One NZ and its former parent company Vodafone is set to give local developers and businesses access ...

Flaws in OpenEMR's platform — used by more than 100,000 healthcare providers — enabled database compromise, remote code ...

Polymarket dismissed a dark web hack claim, calling the records publicly available via its free APIs and on-chain data ...