Bleeping Computer

Trello API abused to link email addresses to 15 million accounts

An exposed Trello API allows linking private email addresses with Trello accounts, enabling the creation of millions of data profiles containing both public and private information. Trello is an ...
The Hacker News

OneLogin Bug Let Attackers Use API Keys to Steal OIDC Secrets and Impersonate Apps

CVE-2025-59363 "allowed attackers with valid API credentials to enumerate and retrieve client secrets for all OIDC ...
Bleeping Computer

Email addresses of 15 million Trello users leaked on hacking forum

A threat actor has released over 15 million email addresses associated with Trello accounts that were collected using an unsecured API in January. Trello is an online project management tool owned by ...
WOOD-TV

Salt Security Addresses Critical OAuth Vulnerabilities By Enhancing API Security Platform ...

Organisations that demonstrate a commitment to robust security practices foster user confidence and enhance brand reputation, leading to stronger customer ...
TheServerSide

How to get an OpenAI API key for ChatGPT

The biggest mistake people make when trying to get their ChatGPT API key is that they use the wrong URL. The key can't be found at chatgpt.com. Instead, point your browser to the OpenAI developer ...
CoinTelegraph

Kronos Research halts trading amid $25M API key hack investigation

A hacker has walked away with $25 million from quantitative trading firm Kronos Research after accessing its compromised API keys. On Nov. 19, Kronos Research revealed that an unauthorized entity ...