Security Boulevard

API Attack Awareness: Broken Object Level Authorization (BOLA) – Why It Tops the OWASP API Top 10

For this Cybersecurity Awareness Month, we thought it important to draw attention to some of the most common and dangerous API vulnerabilities.  This week, we’re starting with Broken Object Level ...
Business Today

Twitter says working on resolving issues with search endpoints with API

Twitter on Thursday evening said that its aware of users facing an issue with search endpoints with API on the microblogging website and is investigating the same. The status page said, "are aware of ...

Apple iOS apps are worse at leaking sensitive data than Android apps, worrying research finds - here's what you need to know

Zimperium research finds many Android and iOS apps leak sensitive data, exposing enterprises to API attacks and hidden malware risks.
The Hacker News

OneLogin Bug Let Attackers Use API Keys to Steal OIDC Secrets and Impersonate Apps

CVE-2025-59363 "allowed attackers with valid API credentials to enumerate and retrieve client secrets for all OIDC ...
ZDNet

A hacking group is hijacking Docker systems with exposed API endpoints

A hacking group is currently mass-scanning the internet looking for Docker platforms that have API endpoints exposed online. The purpose of these scans is to allow the hacker group to send commands to ...
SiliconANGLE

Anyscale launches Endpoints, a more cost-effective platform for fine-tuning generative AI models

Anyscale Inc., creator of the open-source distributed computing platform Ray, is launching a new service called Anyscale Endpoints that it says will help developers integrate fast, cost-effective and ...
ZDNet

Coursera API vulnerabilities disclosed by researchers

On Thursday, Checkmarx security researcher Paulo Silva revealed the discovery of multiple security failings in the Coursera online learning platform, which caters to millions of learners, both at home ...