Adobe is warning of a critical vulnerability (CVE-2025-54236) in its Commerce and Magento Open Source platforms that ...

In 2025, vulnerability scanning tools are essential for modern security teams, but running a scan is rarely the hard part anymore. The real challenge is automating it at scale: across thousands of ...

Ethical hackers have detailed how they uncovered 'catastrophic' vulnerabilities in various Burger King systems.

Astra’s API Security Platform solves this by finding every undocumented, dormant, and shadow API across infrastructure. The platform analyzes live traffic in real-time and runs offensive Dynamic ...

Learn how AI-driven APIs reshape threat models and discover actionable security practices to protect data and prevent ...

APIs remain the unsung heroes of digital transformation, enabling everything from seamless logins and payments to secure ...

Traditional security solutions, including Web Application Firewalls (WAFs), came under scrutiny, with 57% doubting their effectiveness in distinguishing genuine from fraudulent API activity. Looking ...

Furthermore, the vulnerabilities are not dependent on one another, Cisco stresses in its advisory. Exploitation of one of the vulnerabilities is not required to exploit the other vulnerability.

At the RSA Conference Akamai launched a new security platform for fake websites focused on protecting application protocol interfaces, or APIs.

Researchers found a flaw in a Kia web portal that let them track millions of cars, unlock doors, and start engines at will—the latest in a plague of web bugs that’s affected a dozen carmakers.

One potential downside to the anomaly-detection approach to API security is that Web applications change frequently and so does the corresponding API traffic.

• The December 2021 Log4j attack was facilitated by API security vulnerabilities, allowing attackers to break into major systems, including Amazon, Apple Baidu, Twitter, and government entities.