API Security stories

Delinea acquires StrongDM to fuse privileged access management with JIT runtime controls, targeting AI-era human and machine identities.

Claude Code flaws found by Check Point could let malicious repos run code and grab API keys before developers confirm a project is trusted.

Radware launches cloud Web DDoS defence that blocks encrypted layer 7 attacks without forcing customers to share SSL certificates.

Cloudflare warns AI-driven identity fraud and SaaS abuse are reshaping cybercrime, as global costs hit USD $10.5 trillion a year.

F5 Labs launches monthly AI security leaderboards, ranking popular models on new indices of risk, resilience and cost under live attack.

Contrast links its sensors with ServiceNow workflows to sync app and API risk data, aiming to cut false positives and speed remediation.

AI-first firms take months longer to recover from cyber attacks and face sharply higher breach and scraping costs, Fastly research warns.

AI has become firms' top data security fear as identity and deepfake threats surge, exposing gaps in visibility, encryption and governance.

A rapid surge in OpenClaw AI assistant use has left tens of thousands of exposed systems and a trail of hijacked tools and malicious add-ons.

AI-first firms in Southeast Asia suffer longer, costlier cyber incidents as rising AI use widens attack surfaces and fuels scraping costs.

AI-driven hackers can now steal data in just 72 minutes, as faster, multi-surface attacks overwhelm complex, over-trusting enterprises.

AI has overtaken all other threats as the top global data security risk, with firms warning its rapid spread magnifies existing vulnerabilities.

Keeper adopts NIST's Kyber post-quantum cryptography in its password tools, aiming to shield credentials from future quantum attacks.

AI-fuelled ransomware, rapid cloud intrusions and identity abuse are transforming cyber risk, slashing response times for defenders.

Anthropic alleges Chinese labs DeepSeek, Moonshot and MiniMax ran vast illicit campaigns to copy Claude and bypass US export curbs.

Radware warns 2025 cyberattacks are exploding, with network DDoS up 168% and web DDoS up 101% as bots, apps and APIs face heavier fire.

Kong adds Solace to its premium partner programme, unifying control of APIs, event streams and AI calls for centralised governance.

DryRun Security appoints Signal Sciences Co-founder Andrew Peterson to its board to steer its AI-native code security push.

Check Point tops GigaOm's 2025 Radar for cloud network security for a third year, named a Leader and Fast Mover for its unified platform.

Okta launches Agent Discovery to uncover and rein in shadow AI agents, mapping risky app access and tightening identity-based controls.