The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

The Integrated Management Controller (IMC) flaw gives attackers admin access and remote control over servers even when main ...

Bankr x402 Cloud gives developers a complete platform to deploy pay-per-request API endpoints with hosting, agentic payments, ...

Coinbase and the Linux Foundation have formed the x402 Foundation to develop an open standard for embedding payments into web ...

Developers and AI agents can generate courses, evaluate answers, and run learning workflows through a single API, with ...

Cisco has patched eight critical and high-severity vulnerabilities that could lead to bypasses, code execution, and privilege ...

Cisco has patched several critical and high-severity vulnerabilities, including an Integrated Management Controller (IMC) ...

Anthropic's Claude Code source has leaked via a packaging error, exposing anti-distillation traps, an undercover mode, and ...

North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.

ChatGPT and Codex flaws patched Feb 2026 exposed DNS exfiltration and GitHub tokens, raising enterprise AI security risks.

Today’s attack surface is shifting from the endpoint to the API, and AI and third-party SaaS are worsening the issue. CISOs offer advice for API defense.