Security Boulevard

Inside Modern API Attacks: What We Learn from the 2026 API ThreatStats Report

API security has been a growing concern for years. However, while it was always seen as important, it often came second to application security or hardening infrastructure.  In 2025, the picture ...

SafePrompt Launches Prompt Injection Protection API for AI Developers

Developer-first security tool blocks AI manipulation attacks in under 100 milliseconds with a single API call Our goal ...

QuickLens Chrome extension steals crypto, shows ClickFix attack

A Chrome extension named "QuickLens - Search Screen with Google Lens" has been removed from the Chrome Web Store after it was ...
Analytics Insight

What Is Trafficmind and How Does It Stop Bot Attacks

Bot attacks are one of the most common threats you can expect to deal with as you build your site or service. One exposed attack vector can bring your e-commerc ...
Security Boulevard

Integrating Advanced API Security with Imperva Gateway Environment

With APIs powering much of our modern applications, protecting them is no longer optional; it’s a necessity. This blog explores how to seamlessly integrate advanced API security into your Imperva ...

Chinese cyberspies breached dozens of telecom firms, govt agencies

Mandiant, and partners disrupted a global espionage campaign attributed to a suspected Chinese threat actor that used SaaS API calls to hide malicious traffic in attacks targeting telecom and ...
The Hacker News

Wormable XMRig Campaign Uses BYOVD Exploit and Time-Based Logic Bomb

Researchers uncover wormable XMRig campaign using BYOVD exploit and LLM-built React2Shell attacks hitting 90+ hosts.

Inside the Making Of A Global Cybersecurity SaaS Company: The Indusface Story

That discipline shaped how we built products and operations. We focused on outcomes customers could measure, particularly ...
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...

Why is Anthropic accusing Chinese AI labs over distillation attacks

Anthropic, the maker of Claude chatbot, formally accused China’s DeepSeek and two other AI labs in the country—Moonshot and ...

Five storylines at Bay Hill: Scottie Scheffler’s chase for a third title and more

Scott Scheffler eyes third title, Justin Thomas returns, Jordan Spieth seeks to regain form as Bay Hill again promises one of ...

FireCompass Launches AI Agents for Autonomous Web and API Penetration Testing With Freemium Access

Start in minutes and validate exploitable paths across web apps, APIs, and external infrastructure. BOSTON, MA, UNITED ...