API Security stories - Page 5

Veracode upgrades its Package Firewall and testing tools to block malicious software packages before they enter development pipelines.

Shadow AI tool Clawdbot quietly spreads across workplaces, alarming security teams as staff grant it broad access on unmanaged devices.

Tenable launches Tenable One AI Exposure to map, govern and cut AI-driven cyber risk across cloud, SaaS and on-premises systems.

AI-driven cloud adoption is forcing firms to swap static privacy checklists for continuous, real-time defence of sensitive data flows.

Tenable launches AI Exposure tool to give security teams unified visibility, governance and risk prioritisation across enterprise AI use.

Radware acquires Pynt to add pre-production testing and deliver unified lifecycle API security from design through to runtime defence.

Radware launches cloud-based API Security Service unifying discovery, posture management and runtime defence to counter evolving API threats.

Experts say AI-driven attacks and rampant data leaks mean organisations must verify outputs, curb collection and harden identity controls.

Deutsche Telekom Security taps Akamai's certified service scheme to bolster API defences and microsegmentation for high‑risk sectors.

Practical DevSecOps unveils a hands-on Certified Security Champion course to embed security advocates inside software development teams.

Attackers are already exploiting AI agents, extracting hidden prompts, bypassing safety checks and abusing tools tied to data and systems.

Ping Identity has launched Universal Services, a continuous trust layer to combat AI-driven fraud and secure risky interactions beyond login.

'BodySnatcher' bug let attackers hijack ServiceNow AI agents to mimic users and create backdoor admin accounts on on-premise systems.

Rapid7 partners with ARMO to embed cloud runtime detection into its Command Platform, unifying exposure management and live threat response.

F5 rolls out AI Guardrails and AI Red Team to harden runtime security, blending adversarial testing with real-time policy enforcement.

Ping Identity appoints former Slack executive Adnan Chaudhry as chief revenue officer to drive global go-to-market amid AI identity boom.

Hydrolix launches Bot Insights to reveal hidden AI bot traffic and six-figure cost leaks, promising real-time visibility across CDNs.

Astra launches a continuous cloud scanner for AWS, Azure and GCP, promising fewer false alerts by validating which risks are truly exploitable.

Intruder finds over 42,000 sensitive tokens hidden in JavaScript bundles, exposing a major blind spot in modern web app security tools.

F5 rolls out Distributed Cloud Services 7.0, boosting API discovery, threat detection and networking for complex hybrid multicloud setups.