News

Actor auth tokens gave Global Admin access across Azure Entra ID tenants

A Dutch security researcher has published an indepth analysis of a critical vulnerability that could have allowed attackers ...

This Microsoft Entra ID Vulnerability Could Have Caused a Digital Catastrophe

A pair of flaws in Microsoft's Entra ID identity and access management system could have allowed an attacker to gain access ...
The Hacker News

Chaos Mesh Critical GraphQL Flaws Enable RCE and Full Kubernetes Cluster Takeover

An in-cluster attacker, i.e., a threat actor with initial access to the cluster's network, could chain CVE-2025-59359, ...
Infosecurity Magazine

API Threats Surge to 40,000 Incidents in 1H 2025

The firm’s Imperva business analyzed data from over 4000 environments worldwide to produce its API Threat Report (H1 2025).
InfoQ

Vercel Introduces AI Gateway for Multi-Model Integration

Vercel has rolled out the AI Gateway for production workloads. The service provides a single API endpoint for accessing a ...