The Hacker News

Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials

"The C2 hosts a web-based graphical user interface (GUI) titled 'NEXUS Listener' that can be used to view stolen information ...

Security study finds thousands of API credentials exposed on the web for years

Researchers scan 10 million websites and uncover thousands of exposed API keys quietly granting access to cloud systems and ...

A simple coding mistake is exposing API keys across thousands of websites

A large-scale study has revealed that websites are unintentionally exposing API keys tied to services like AWS, Stripe, and ...
InfoWorld

CERT-EU blames Trivy supply chain attack for Europa.eu data breach

The European Union’s Computer Emergency Response Team, CERT-EU, has traced last week’s theft of data from the Europa.eu ...

CERT-EU: European Commission hack exposes data of 30 EU entities

The European Union's Cybersecurity Service (CERT-EU) has attributed the European Commission cloud hack to the TeamPCP threat ...

Europe’s cyber agency blames hacking gangs for massive data breach and leak

CERT-EU blamed the cybercrime group TeamPCP for the recent hack on the European Commission, and said the notorious ...
Crypto Briefing

Bankr launches x402 cloud on 4/02 day as x402 protocol joins the Linux Foundation

Bankr x402 Cloud gives developers a complete platform to deploy pay-per-request API endpoints with hosting, agentic payments, ...
CSO Online

APIs are the new perimeter: Here’s how CISOs are securing them

Today’s attack surface is shifting from the endpoint to the API, and AI and third-party SaaS are worsening the issue. CISOs offer advice for API defense.

GigaOm Names Check Point Software a Leader and Fast Mover in Application and API Security

Check Point® Software Technologies Ltd. (NASDAQ: CHKP), a pioneer and global leader of cyber security solutions, today announced that GigaOm has named Check Point a Leader in its Application and API ...
Unite.AI

AI Agents Are Getting Smarter and Their Attack Surface is Getting Bigger

The moment AI agents started booking meetings, executing code, and browsing the web on your behalf, the cybersecurity conversation shifted. Not slowly, but instead overnight.What used to be a ...

Meta Pauses Work With Mercor After Data Breach Puts AI Industry Secrets at Risk

Major AI labs are investigating a security incident that impacted Mercor, a leading data vendor. The incident could have exposed key data about how they train AI models.

Penta Security Wins 8 Categories at the 2026 Cybersecurity Excellence Awards

Leading cybersecurity firm, Penta Security, recognized across web application security, data security, passwordless ...