Bleeping Computer

Trello API abused to link email addresses to 15 million accounts

An exposed Trello API allows linking private email addresses with Trello accounts, enabling the creation of millions of data profiles containing both public and private information. Trello is an ...

A Security Leader’s Response Guide To A Third-Party SaaS Breach

AT&T will soon be paying $149 million to current and former customers whose data was compromised following the 2024 hack ...
The Hacker News

OneLogin Bug Let Attackers Use API Keys to Steal OIDC Secrets and Impersonate Apps

CVE-2025-59363 "allowed attackers with valid API credentials to enumerate and retrieve client secrets for all OIDC ...
Krebs on Security

DOGE Denizen Marko Elez Leaked API Key for xAI

Marko Elez, a 25-year-old employee at Elon Musk’s Department of Government Efficiency (DOGE), has been granted access to sensitive databases at the U.S. Social Security Administration, the Treasury ...

Google clarifies API key process for local inventory feeds

Google simplified the process for merchants to obtain API keys for local inventory feeds, clearing a hurdle to faster ...
Geeky Gadgets

Creating GPT Custom Actions using an OpenAI API Key

If you have been playing around creating a few OpenAI custom GPTs in the new ChatGPT Explore section, which is now available to ChatGPT Plus and Enterprise users. You may have seen a section where you ...
WOOD-TV

Salt Security Addresses Critical OAuth Vulnerabilities By Enhancing API Security Platform with OAuth Protection Package

Organisations that demonstrate a commitment to robust security practices foster user confidence and enhance brand reputation, leading to stronger customer relationships and a competitive edge.” — ...