TMCnet

Alpaca Reports Sharp Growth in API Trading as AI Reshapes Market Access

Alpaca, a global leader in brokerage infrastructure APIs, today shared new platform data showing strong growth in API trading as artificial intelligence reshapes how people access and interact with ...
WeLiveSecurity

GopherWhisper: A burrow full of malware

ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian ...
Decrypt

OpenAI Just Open-Sourced a Tool That Scrubs Your Secrets Before ChatGPT Ever Sees Them

OpenAI has released Privacy Filter: a small, free model that masks sensitive info before you paste it into an AI chatbot.
Infosecurity-magazine.com

Google API Keys Quietly Gain Access to Gemini on Android Devices

A flaw in Google's API key system has reportedly exposed mobile applications to unintended access to its Gemini AI platform. According to a CloudSEK advisory published on April 8, the issue affects ...
techtimes

API Key Leak Exposes AWS, Stripe, OpenAI Credentials Across Thousands of Sites

A large-scale cybersecurity study has revealed a serious global web security issue involving exposed API credentials tied to major platforms, including Amazon Web Services, Stripe, and OpenAI. After ...
Digital Trends

A simple coding mistake is exposing API keys across thousands of websites

After analyzing 10 million webpages, researchers have found thousands of websites accidentally exposing sensitive API credentials, including keys linked to major services like Amazon Web Services, ...
Bleeping Computer

CISA: New Langflow flaw actively exploited to hijack AI workflows

The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical vulnerability identified as CVE-2026-33017, which affects the Langflow framework ...
GitHub

SecretSifter — Burp Suite Extension

A passive and active secret-detection extension for Burp Suite (Montoya API). Detects exposed API keys, credentials, PII, JWTs, and connection strings in HTTP traffic. Community Edition note: Passive ...
New Scientist

Security credentials inadvertently leaked on thousands of websites

Critical security credentials are inadvertently being exposed on thousands of websites – including those run by some banks and healthcare providers. The leaked details could have given snoopers access ...
financefeeds

Alpaca Integrates BridgeWise AI Engine to Deliver Investment Analysis Across Broker API Network

Alpaca has partnered with BridgeWise to integrate artificial intelligence investment analysis into its brokerage infrastructure platform used by financial institutions worldwide. The collaboration ...
GitHub

One-time secret sharing for humans & agents.

Humans and agents need to exchange secrets — API keys, database passwords, tokens — without exposing them in chat logs, terminal history, or Slack threads. The exchange goes both ways: a human sends ...
blockchain

GitHub Adds 28 Secret Detectors Including Snowflake and Vercel API Keys

GitHub's March 2026 secret scanning update adds 28 new detectors from 15 providers, enables push protection for 39 patterns, and adds validity checks for DeepSeek and npm tokens. GitHub expanded its ...