API vulnerability scanning and API penetration testing are both important methods for ensuring the security of an API, but they have distinct differences in terms of their scope, methodology and ...

IBM urged customers to patch a critical authentication bypass vulnerability in its API Connect enterprise platform that could ...

IBM disclosed a critical CVSS 9.8 authentication bypass in IBM API Connect that could allow remote access; patches are now ...

On Thursday, Checkmarx security researcher Paulo Silva revealed the discovery of multiple security failings in the Coursera online learning platform, which caters to millions of learners, both at home ...

SANTA CLARA, Calif.--(BUSINESS WIRE)--Cequence Security, a pioneer in API security and bot management, today announced that its CQ Prime Threat Research Team has identified a critical vulnerability ...

Rated 9.8 out of 10 in severity, the flaw could allow a remote attacker to gain unauthorized access to applications.

Cybersecurity firm Salt Labs discovered a GraphQL API authorization vulnerability in a large B2B financial technology platform. It would give attackers the ability to submit unauthorized transactions ...

While Twitter already claimed it had fixed its API vulnerability, BleepingComputer reports that hackers could exploit 5.4 million users’ data through the same vulnerability. The stolen data is shared ...

Open WebUI carried CVE-2025-64496, a high-severity code injection flaw in Direct Connection features Exploitation could ...

A newly found vulnerability in GraphQL query language for application programming interfaces has been found to expose a leading business-to-business financial technology company. While the exposed ...

PALO ALTO, Calif. – Sept. 29, 2021 – Salt Security, the leading API security company, today released new API threat research from Salt Labs detailing Elastic Injection attacks. The research highlights ...