News

ZDNet6y
Over 100,000 GitHub repos have leaked API or cryptographic keys
Some companies have taken it upon themselves to scan GitHub and other code-sharing repositories for accidentaly exposed API keys, and revoke the tokens even before API key owners notice the leak ...
InfoWorld2y
Public package repos expose thousands of API security tokens—and they’re active
Unlike the presence of a code vulnerability ... Google Cloud Platform, and Telegram API tokens are the most-leaked tokens (in that order). However, it seems that AWS developers are more vigilant ...
Security Boulevard1d
What are the best practices for MCP security?
Introduction Modern applications are increasingly powered by large language models (LLMs) that don’t just generate text—they can call live APIs, query databases, and even trigger automated workflows.
TechCrunch1y
How a mistakenly published password exposed Mercedes-Benz source code
Mercedes spokesperson Katja Liesenfeld confirmed that the company “revoked the respective API token and removed the public repository immediately.” “We can confirm that internal source code ...
Infosecurity-magazine.com2y
Thousands of Publicly Exposed API Tokens Could Threaten Software Integrity
Thousands of publicly exposed, active application programming interface (API) tokens have been spotted across the web ... the team privately disclosed all leaked secrets to their respective code ...