In a significant cybersecurity incident, researchers have discovered that DeepSeek, a widely used AI platform, has inadvertently exposed nearly 12,000 live API keys and passwords within its publicly accessible training data. This breach has raised critical concerns about data security in AI model training and the dangers of hardcoded credentials in web applications. This is […]
A significant Trello API data breach has exposed over 15 million email addresses associated with Trello accounts, leaking them on a hacking forum. This incident, traced back to an unsecured API in January, has heightened concerns regarding data security and privacy, particularly for businesses relying on Trello for project management. Trello, owned by Atlassian, is […]
Twilio has disclosed that an unsecured API endpoint enabled threat actors to verify the phone numbers of millions of Authy multi-factor authentication (MFA) users, raising the risk of SMS phishing and SIM swapping attacks. Authy, an app generating MFA codes for websites, is now urging users to update their apps for enhanced security. In late […]