The Next Web

Hackers are mass-exploiting a Gravity SMTP flaw to steal API keys from 100,000 WordPress sites

Wordfence has blocked 17M+ exploit attempts targeting a Gravity SMTP bug that leaks API keys, OAuth tokens, and full system reports without authentication.
Dark Reading

Attackers Hijack Exposed AI Endpoints to Power Offensive Ops

Attackers don't need any special authentication to reach a target endpoint — they just need to know where it is.
SecurityWeek

Attackers Exploit Gravity SMTP Plugin Flaw to Harvest Valuable WordPress Data

Hackers are exploiting a vulnerability in the Gravity SMTP WordPress plugin to extract configuration data, including API keys ...
Bleeping Computer

VS Code zero-day lets hackers steal GitHub tokens in one click

A security researcher has released exploit code for a Visual Studio Code (VS Code) zero-day vulnerability that allows attackers to steal GitHub authentication tokens by tricking users into clicking a ...
Tech Times

ChatGPT Enterprise Gains Slack Write Access: AI Agent Can Now Join Channels, Upload Files

ChatGPT Enterprise Slack integration gained write-scope connector actions on June 22 — joining channels, uploading files, ...

Envoy AI Gateway Reaches v1.0, Establishing the Open Source Standard for Enterprise AI Traffic

Backed by contributions from Bloomberg, Nutanix, and Tetrate, v1.0 delivers production-grade routing, governance and ...
BBN Times

Why API Modernization Is The Missing Piece Of Successful Digital Transformation

API modernization services are no longer a background IT task. They decide whether digital transformation becomes a working operating model or just a set of nice screens sitting on top of old ...

Paradigms of Authentication A Deep Dive into Passkeys vs Passwords

A detailed analysis of passkeys vs passwords, examining WebAuthn protocols, asymmetric key cryptography, phishing resistance ...

Fake Claude Code Installers Deliver Credential-Stealing Malware

Fake Claude Code install sites are pushing malware that steals API keys, developer credentials, crypto wallets, and other sensitive data.

How Bots Are Becoming The Internet's Biggest Customers

For most of the internet's history, automated traffic was something to defend against. While helping to build a captcha ...
BeInCrypto

Private Transfers via API: Reduced Traceability for Crypto Products

Crypto products usually treat transfers as an execution problem. The interface has to show the route, estimate fees, handle ...