Advertisement
Cisco Secure Workload RCE via CVE-2025-20165 — Mitigation Guide
Cisco patches a critical 9.8 CVSS vulnerability in Secure Workload REST APIs that allows unauthenticated attackers to gain Site Admin privileges.
TeamPCP Threatens Sale of Mistral AI Source Code Repositories
TeamPCP hackers claim to have exfiltrated 22GB of source code from Mistral AI. This report analyzes the breach impact and API key security risks.
Exposed Google API Keys in Android Apps Grant Gemini Access
Analysis of Google API keys found in Android apps that enable unauthorized access to Gemini AI endpoints, detailing risks and mitigation for developers.
UK Companies House Vulnerability: API Flaw Exposed Millions of Firms
A broken access control vulnerability at UK Companies House allowed unauthorized access to sensitive records and potential modification of corporate filings.
Google Cloud API Keys Exposed via Public Gemini Access
Research reveals nearly 3,000 public GCP API keys exposed in client-side code grant unauthorized access to sensitive Gemini and Vertex AI endpoints.
Insecure Google API Keys Expose Gemini AI and Private Data
Exposed Google API keys, once considered low-risk for services like Maps, now allow unauthorized access to Gemini AI models and sensitive project data.