The Hidden Complexity In AI Infrastructure: Why Credentials Are The Real Attack Surface

The Weaviate incident in 2025 illustrated this clearly. A researcher discovered an exposed OpenAI API key in a public ...
GitHub

seatsio-js, the official Seats.io JS SDK

️ Read This First! seatsio-js requires your seats.io secret key. This key carries many privileges, including creating events, booking and releasing seats, and more ...
The Hacker News

⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

This week’s recap covers exploited flaws, supply chain attacks, phishing kits, AI lures, macOS stealers, urgent CVEs, tools, ...
The Hacker News

ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Code Patch + 28 New Stories

Cybersecurity roundup: supply chain threats, AI agent risks, browser-cloning malware, mule networks, endpoint bypasses, and ...

A Crypto Scam Targeted a Gay OnlyFans Star. Then His X Feed Was Flooded With ‘MAGA Propaganda’

In recent months hackers have attempted to extort money from porn stars with big followings, in some cases filling their ...
CoinDesk

Humanity Protocol token crashes more than 80% after a $32 million private-key hack

The decentralized identity project said attackers compromised the keys of a foundation member and are dumping the stolen H ...
Dark Reading

Application Security

Application Security Copilot 'SearchLeak' Attack Allows 1-Click Data Theft The critical, three-stage attack is now patched, but it's part of a new group of AI prompt-injection issues that use hidden ...
Dark Reading

Vulnerabilities & Threats

Vulnerabilities & Threats Insider Threats Cyber Risk US Cracks Down on Anthropic AI Models Amid Abuse Concerns Anthropic abruptly suspended all access to Fable 5 and Mythos 5 after receiving an export ...