Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
Search Engine Land

Google Ads API v24.2 adds AI transparency, stronger security and new reporting

API v24.2 introduces AI visibility tools, stronger security controls and new PMax reporting features for advertisers and developers. Google has released Google Ads API v24.2, an update that introduces ...
Global Investigative Journalism Network

New Tools for Tracking US Migrant Detention Centers and Illicit Dual-Use Exports for Russian War Effort

Featuring two free-access databases that provide hard-to-find accountability evidence on the mass migrant detention network ...
Security

DHS Warns Salt Typhoon Hack Could Expose National Guard, State Networks

A newly issued Department of Homeland Security intelligence memo reveals that a cyber intrusion into a U.S. state’s Army National Guard network by threat actors associated with China likely enabled ...
Searchenginejournal.com

Security Researcher: WordPress 7.0 Could Trigger Rush To Steal AI API Keys

Oliver Sild, founder of Patchstack WordPress security company, shared concerns about the security of AI API keys in WordPress 7.0, sharing that there “will be an absolute rush by hackers to steal API ...
Bleeping Computer

New GhostLock tool abuses Windows API to block file access

A security researcher has released a proof-of-concept tool named GhostLock that demonstrates how a legitimate Windows file API can be abused in attacks to block access to files stored locally or on ...
ZDNet

Anthropic's new Claude Security tool scans your codebase for flaws - and helps you decide what to fix first

AI vulnerability scanning is moving into developer workflows. Claude Security turns findings into prioritized fix guidance. The big challenge is keeping these tools from attackers. Anthropic has ...
Finextra

FedNow strengthens instant payments security with new API tool

This content has been selected, created and edited by the Finextra editorial team based upon its relevance and interest to our community. On April 28, early adopters will be able to access historical ...
GitHub

jessmail/secure-api-analyzer

An automated security testing tool for REST APIs, focused on authentication, authorization, and OWASP Top 10 vulnerabilities. Built for penetration testers and security engineers who need fast, ...
Local News 8

New tool helps visualize water use — and what’s not reaching the Great Salt Lake

SALT LAKE CITY (KSTU) -- If you haven’t been to the Great Salt Lake lately, the impact is hard to miss. Lower water levels, an expanding shoreline, and ongoing concerns about the lake’s future are all ...
londonlovesbusiness.com

Top 10 new and promising API testing tools in 2025-2026

The API testing landscape has changed dramatically in the past twelve months. The old classics—Postman, SoapUI, and REST Assured—are still widely used, but a new wave of tools has quietly crossed the ...
GitHub

Elastic Security MCP App

An MCP App that brings interactive blue-team security operations directly into Claude, VS Code, and other MCP-compatible AI hosts. Built on the Model Context Protocol with interactive UI extensions ...