Vercel confirms a security incident after a threat actor claims internal access and demands a $2M ransom, raising concerns about API keys, CI/CD pipelines, and cloud security.

A developer needs to connect a service to an API. The documentation says to generate an API key, store it in an environment variable and pass it in a header. Five minutes later, the integration works.

Threat actors can extract Google API keys embedded in Android applications to gain access to Gemini AI endpoints and ...

A Linux variant of the GoGra backdoor uses legitimate Microsoft infrastructure, relying on an Outlook inbox for stealthy ...

The recent supply chain attack involving Mercor and the LiteLLM vulnerability serves as a massive wake-up call for enterprise security teams. While the security industry has spent the last year ...

Akamai bolsters API security offering By Chris Tredger, Technology Portals editor, ITWebJohannesburg, 14 Apr 2026API or Application Programming Interface is a critical component within digital ...

As enterprises accelerate cloud adoption, development teams increasingly standardize on native cloud services to improve ...

A flaw in Google's API key system has reportedly exposed mobile applications to unintended access to its Gemini AI platform.

Vercel disclosed a security breach via Context.ai compromise. Hackers demand $2M for stolen data as Web3 projects rotate API ...

Vercel confirms a security incident after a threat actor claims internal access and demands a $2M ransom, raising concerns about API keys, CI/CD pipelines, and cloud security.

Patching is not enough: applications embedding the insecure library will need to be rebuilt, and affected tokens and cookies ...