InfoQ

RESTful API Authentication Schemes

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Dany Lepage discusses the architectural ...
The Next Web

Hackers are mass-exploiting a Gravity SMTP flaw to steal API keys from 100,000 WordPress sites

Wordfence has blocked 17M+ exploit attempts targeting a Gravity SMTP bug that leaks API keys, OAuth tokens, and full system reports without authentication.
Threat Post

Critical Cisco VM Bug Allows Remote Takeover of Routers

CVE-2019-12643 has been given the highest possible severity rating. A critical remote authentication-bypass vulnerability – with the highest possible severity level of 10 out of 10 on the CvSS scale – ...
The Hacker News

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

Attackers are exploiting CVE-2026-4020 in Gravity SMTP to leak API keys, OAuth tokens, and system data from WordPress sites.
SDxCentral

Cisco Patches Critical Bug in REST API Container

Cisco issued a patch for a critical bug in its IOS XE operating system that could allow a remote attacker to bypass authentication on devices running the software. Cisco found the critical bug during ...