The Hacker News

OneLogin Bug Let Attackers Use API Keys to Steal OIDC Secrets and Impersonate Apps

CVE-2025-59363 "allowed attackers with valid API credentials to enumerate and retrieve client secrets for all OIDC ...

Five Levels Of Security Automation: A Model For The Human–AI SOC

With the L0-L4 model, each of the five levels defines scope, guardrails and governance. Progression is measured by what the ...
DevPro Journal

Five critical API security flaws developers must avoid

Learn how you can implement essential best practices - from strict authorization to rate limiting - to secure APIs and ...
Insurance Business America

API vulnerabilities drive new wave of cyber threats

APIs have become a primary entry point for cyber attacks in 2025, according to new research from Thales. The company’s latest API Threat Report, covering the first half of the year, documents more ...
Ecommerce Fastlane

Why the Future of Retail Runs on a Unified Commerce API (2025) – Shopify

Retail has a platform problem. A 2024 report found 85% of mid‑market retailers rely on multiple platforms to drive growth ...