Vercel confirms a security incident after a threat actor claims internal access and demands a $2M ransom, raising concerns about API keys, CI/CD pipelines, and cloud security.

Vercel confirms a security incident after a threat actor claims internal access and demands a $2M ransom, raising concerns about API keys, CI/CD pipelines, and cloud security.

A developer needs to connect a service to an API. The documentation says to generate an API key, store it in an environment variable and pass it in a header. Five minutes later, the integration works.

Threat actors can extract Google API keys embedded in Android applications to gain access to Gemini AI endpoints and ...

The recent supply chain attack involving Mercor and the LiteLLM vulnerability serves as a massive wake-up call for enterprise security teams. While the security industry has spent the last year ...

Akamai bolsters API security offering By Chris Tredger, Technology Portals editor, ITWebJohannesburg, 14 Apr 2026API or Application Programming Interface is a critical component within digital ...

A flaw in Google's API key system has reportedly exposed mobile applications to unintended access to its Gemini AI platform.

Vercel disclosed a security breach via Context.ai compromise. Hackers demand $2M for stolen data as Web3 projects rotate API ...

Lovable's API exposed source code and database credentials for 48 days after the company closed a bug report. Up to 62% of AI ...

After analyzing 10 million webpages, researchers have found thousands of websites accidentally exposing sensitive API credentials, including keys linked to major services like Amazon Web Services, ...

A CloudSEK report reveals a significant Google bug that exposes Gemini credentials in Android apps, including Google Pay for ...