The Hacker News

Critical CVSS 9.8 Flaw Found in IBM API Connect Authentication System

IBM has disclosed details of a critical security flaw in API Connect that could allow attackers to gain remote access to the application. The vulnerability, tracked as CVE-2025-13915, is rated 9.8 out ...
IEEE

Counteracting Popularity Bias in Multimedia Web API Recommendation

Abstract: With the widespread adoption of multimedia web APIs (API) in web and mobile applications, a substantial proliferation of these APIs is observed. These APIs have streamlined development ...
FiercePharma

Roll Tide: Lilly selects Alabama site as location for $6B API facility

Eli Lilly has unveiled the location of the third of its four large-scale manufacturing facilities that it plans to build in the U.S. The drugmaker has selected Huntsville, Alabama, as the site of a $6 ...
VentureBeat

OpenAI is ending API access to fan-favorite GPT-4o model in February 2026

OpenAI has sent out emails notifying API customers that its chatgpt-4o-latest model will be retired from the developer platform in mid-February 2026,. Access to the model is scheduled to end on ...
CSOonline

Hidden API in Comet AI browser raises security red flags for enterprises

SquareX has disclosed a previously undocumented API within the Comet AI browser that allows its embedded extensions to execute arbitrary commands and launch applications — capabilities mainstream ...
Bleeping Computer

Microsoft: SesameOp malware abuses OpenAI Assistants API in attacks

Microsoft security researchers have discovered a new backdoor malware that uses the OpenAI Assistants API as a covert command-and-control channel. The company's Detection and Response Team (DART) ...
Contract Pharma

Mitigating Disruptions in API Supply: Building Resilient and Redundant Sourcing Strategies

Global active pharmaceutical ingredient (API) supply chains continue to face persistent challenges from post-pandemic disruptions, shifting geopolitical dynamics, and evolving regulations. Longer lead ...
Microsoft

Unleashing API-powered agents at Microsoft: Our internal learnings and a step-by-step guide

At Microsoft, we’re creating API-based agents that extend the reach of Microsoft 365 Copilot to include more diverse apps and data sources. Agentic AI is the frontier of the AI landscape. These tools ...
TechCrunch

DeepSeek releases ‘sparse attention’ model that cuts API costs in half

Researchers at DeepSeek on Monday released a new experimental model called V3.2-exp, designed to have dramatically lower inference costs when used in long-context operations. DeepSeek announced the ...
Tech.co

40,000+ API-Based Cyberattacks Identified in Massive 2025 Spike

There’s been an alarming surge in API-based cyberattacks during the first half of 2025, with researchers from Thales observing more than 40,000 such incidents across 4,000 monitored environments since ...
Infosecurity-magazine.com

API Threats Surge to 40,000 Incidents in 1H 2025

The financial services, telecoms and travel sectors were in the crosshairs of threat actors in the first half of the year, after Thales observed 40,000 incidents in the period alone. The firm’s ...