IBM warns of critical API Connect auth bypass vulnerability

IBM urged customers to patch a critical authentication bypass vulnerability in its API Connect enterprise platform that could ...
Forbes

API Penetration Testing And API Vulnerability Assessment: Use The Right Tool For The Right Job

API vulnerability scanning and API penetration testing are both important methods for ensuring the security of an API, but they have distinct differences in terms of their scope, methodology and ...
The Hacker News

Critical CVSS 9.8 Flaw Found in IBM API Connect Authentication System

IBM disclosed a critical CVSS 9.8 authentication bypass in IBM API Connect that could allow remote access; patches are now ...
Digital Journal

API vulnerability triggers Experian data leak: What is to be done?

A computer being used in a workplace. — © Tim Sandle, A computer being used in a workplace. — © Tim Sandle, Major finance company Experian experienced a data ...
Business Wire

Cequence Researchers Discover Critical API Security Vulnerability in One of the Largest Food and Drug Retailers’ IT Infrastructure

SANTA CLARA, Calif.--(BUSINESS WIRE)--Cequence Security, a pioneer in API security and bot management, today announced that its CQ Prime Threat Research Team has identified a critical vulnerability ...
eWeek

Cisco Opens Up Vulnerability Disclosure With OpenVuln API

eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. IT professionals are inundated on a daily basis with ...

This WebUI vulnerability allows remote code execution - here's how to stay safe

Open WebUI carried CVE-2025-64496, a high-severity code injection flaw in Direct Connection features Exploitation could ...
ZDNet

Coursera API vulnerabilities disclosed by researchers

On Thursday, Checkmarx security researcher Paulo Silva revealed the discovery of multiple security failings in the Coursera online learning platform, which caters to millions of learners, both at home ...
ZDNet

GraphQL API authorization flaw found in major B2B financial platform

Cybersecurity firm Salt Labs discovered a GraphQL API authorization vulnerability in a large B2B financial technology platform. It would give attackers the ability to submit unauthorized transactions ...
Digital Journal

API vulnerability trigger Experian data leak: What is to be done?

Major finance company Experian experienced a data leak due to an API vulnerability that exposed the credit scores of tens of millions of people living in the U.S. Bill Demirkapi, who is an independent ...