Bleeping Computer

GitHub now can auto-block token and API key leaks for all repos

GitHub is now automatically blocking the leak of sensitive information like API keys and access tokens for all public code repositories. Today's announcement comes after the company introduced push ...
SiliconANGLE

Twitter warns developers of potentially exposed API keys and access tokens

Twitter Inc. is warning developers that their application programming interface key, user access tokens and token secrets for their own Twitter accounts may have been exposed in browser caches. In a ...
InfoWorld

Public package repos expose thousands of API security tokens—and they’re active

JFrog’s new Xray Secrets Detection uncovered active access tokens in popular open-source software registries including Docker, npm, and PyPI. Here are our findings and takeaways. As part of the ...
Threat Post

Twitter Warns Developers of API Bug That Exposed App Keys, Tokens

Twitter has fixed a caching issue that could have exposed developers’ API keys and tokens. Twitter developers are being warned of a security bug that may have exposed their applications’ credential ...
Dark Reading

Facebook Spam Botnet Promises 'Likes' for Access Tokens

Cyberattackers are using access tokens for legitimate Facebook apps as vehicles to spread spam on the apps' behalf. How do they do it? By tricking Facebook users into handing over their tokens in ...
SiliconANGLE

Google I/O 2013: OAuth API Design and Security for Authentication in Application Development

Developers who work with accessing APIs are probably already largely familiar with the paradigm that OAuth works under: it’s an identity and authentication API. In his session, Adam Eijdenberg ...
Crypto Briefing

Zerion API now supports x402 payments on Base

Zerion API integrated the x402 protocol. Any AI agent with a crypto wallet can now make an API call, pay 0.01 USDC on Base, ...