The firm’s Imperva business analyzed data from over 4000 environments worldwide to produce its API Threat Report (H1 2025).

Hush Security was created to address these exact problems. Instead of trying to make key management slightly better, it eliminates static keys entirely. Its platform replaces long-lived credentials ...

Join our daily and weekly newsletters for the latest updates and exclusive content on industry-leading AI coverage. Learn More As the attack surface continues to expand across the cloud, API security ...

That’s a big loophole when it’s easier than ever to impersonate other users unnoticed by obtaining valid static credentials ...

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...

JumpCloud, a US-based enterprise software firm is notifying several customers of an "ongoing incident." As a caution, the company has invalidated existing admin API keys to protect its customer ...

Security researchers have discovered over 3200 mobile apps which are leaking Twitter API keys, potentially enabling threat actors to perform account takeovers. Twitter APIs enable developers to access ...

GitHub is now automatically blocking the leak of sensitive information like API keys and access tokens for all public code repositories. Today's announcement comes after the company introduced push ...

Sumo Logic, a U.S.-based cloud data analytics and log analysis company, is urging users to reset API keys after discovering a security breach. In a security notice published this week, Sumo Logic ...

MCLEAN, Va.--(BUSINESS WIRE)--FireTail Inc., a disruptor in API security, today published The State of APIs and API Security in 2023, a comprehensive analysis of significant API breaches and incidents ...