Google API Keys Leak Sensitive Data Without Warning via Gemini
Security researchers at Truffle Security discovered that legacy public-facing Google API keys can silently gain unauthorized access to Google’s sensitive Gemini AI endpoints. This flaw…
Latest Cybersecurity News — Page 187
View all →
New infosec products of the month: February 2026
Here’s a look at the most interesting products from the past month, featuring releases from Aikido Security, Avast, Armis, Black Duck, Compliance Scorecard, Fingerprint, Gremlin,…
Women in Cyber Security Summit 2026: A Movement Transforming Australia’s Cyber Future
In response, the Women in Cyber Security Summit is returning for its second year. Bigger, bolder, and more determined to drive real change across Australia’s…
Gottumukkala out, Andersen in as acting CISA director
Madhu Gottumukkala is out as acting director of the Cybersecurity and Infrastructure Security Agency, with current agency executive director for cybersecurity Nick Andersen replacing him…
AI can unmask online users for just a few dollars each
Researchers have devised a method that allows large language models (LLMs) to strip anonymity from pseudonymous online accounts at scale for as little as $1.41…
Google API Keys Expose Private Data Silently Through Gemini
A critical privilege escalation vulnerability affecting Google Cloud API keys specifically how legacy public-facing keys now silently grant unauthorized access to Google’s Gemini AI endpoints,…
Trend Micro fixes two critical flaws in Apex One
Trend Micro fixes two critical flaws in Apex One Pierluigi Paganini February 26, 2026 Trend Micro fixed two critical Apex One flaws enabling remote code…
Project Compass is Europol’s new playbook for taking on The Com
A global law enforcement effort has taken root to combat The Com, a sprawling nihilistic network of thousands of minors and young adults engaged in…
Senate moves one step closer to passing health care cyber reforms
A key Senate Committee moved to advance legislation that would overhaul cybersecurity practices at the Department of Health and Human Services. The bipartisan Health Care…
Previously harmless Google API keys now expose Gemini AI data
Google API keys for services like Maps embedded in accessible client-side code could be used to authenticate to the Gemini AI assistant and access private data. Researchers…
Phishing‑Led Agent Tesla Campaign Uses Process Hollowing and Anti‑Analysis to Evade Detection
A newly uncovered phishing campaign is delivering Agent Tesla, one of the most widely used credential-stealing malware families, through a multi-stage attack chain that leaves…
This AI Agent Is Designed to Not Go Rogue
AI agents like OpenClaw have recently exploded in popularity precisely because they can take the reins of your digital life. Whether you want a personalized…