Browsing: API Security

The Real Cost of Inconsistent Third-Party Access

Jose CasoDecember 18, 20255 Mins Read

In B2B ecosystems, every third-party interaction is shaped by access, and every delay or misstep is a test of trust. From…

The 2025 OWASP Top 10: What’s New and Rising in AppSec Today

Kirsten DoyleNovember 10, 20255 Mins Read

The OWASP Top 10, the benchmark list of the most critical web application security risks, is back for its 8th…

Threat actors weaponize judicial documents to deliver PureHVNC RAT

Kirsten DoyleNovember 4, 20253 Mins Read

Between August and October 2025, a tightly targeted phishing campaign tricked Colombian and other Spanish-speaking users into opening what looked…

Zimperium Warns Mobile Apps Are the New API Battleground

Kirsten DoyleSeptember 22, 20256 Mins Read

APIs, the invisible engines powering modern mobile apps, are fast becoming one of the biggest security liabilities in enterprise technology. …

TransUnion Confirms Cyber Attack Exposing Data of 4.4 Million People

Kirsten DoyleAugust 29, 20252 Mins Read

This week, TransUnion confirmed a major cyber incident that exposed personal data of more than 4.4 million people. The breach…

Widespread Salesforce Data Theft Exploits Salesloft Drift Integration

Kirsten DoyleAugust 28, 20253 Mins Read

A major data theft campaign has hit corporate Salesforce instances. The actor, tracked as UNC6395, leveraged compromised OAuth tokens from…

Top-Rated Shopify Plugin Exposes Hundreds of Stores to Takeovers, Token Leaks

Kirsten DoyleJuly 18, 20255 Mins Read

A Shopify plugin meant to safeguard privacy did the opposite. For over 100 days, it quietly exposed hundreds of online…

84% of Enterprises at Risk from Weak API Security

Josh Breaker RolfeJuly 15, 20253 Mins Read

Enterprise platforms have a major API security gap, with 84% of organizations exposing sensitive data through APIs without adequate safeguards,…

Berlin Data Watchdog Flags AI Chatbot DeepSeek for Illegal Data Transfers to China

Kirsten DoyleJuly 1, 20253 Mins Read

The Berlin Commissioner for Data Protection has reported the AI app DeepSeek to Apple and Google for breaching European data…

Cisco Patches Critical Flaws in ISE and ISE-PIC That Allow Root Access

Kirsten DoyleJune 30, 20254 Mins Read

Cisco has released urgent security fixes for two vulnerabilities affecting its Identity Services Engine (ISE) and Passive Identity Connector (ISE-PIC).…