The Register on MSN

OpenAI API moonlights as malware HQ in Microsoft’s latest discovery

Redmond uncovers SesameOp, a backdoor hiding its tracks by using OpenAI’s Assistants API as a command channel Hackers have ...
SecurityWeek

SesameOp Malware Abuses OpenAI API

A threat actor has abused the OpenAI Assistants API as a communication mechanism between its C&C server and a stealthy ...

Microsoft warns a key OpenAI API is being exploited to launch cyberattacks

"Instead of relying on more traditional methods, the threat actor behind this backdoor abuses OpenAI as a C2 channel as a way ...

Microsoft warns that an OpenAI API is being abused as a backdoor for 'espionage'

Microsoft researchers say that an OpenAI API is being abused by bad actors for long-term 'espionage' operations.
SecurityWeek

Claude AI APIs Can Be Abused for Data Exfiltration

Attackers can use indirect prompt injections to trick Anthropic’s Claude into exfiltrating data the AI model’s users have ...
Bleeping Computer

JumpCloud resets admin API keys amid ‘ongoing incident’

JumpCloud, a US-based enterprise software firm is notifying several customers of an "ongoing incident." As a caution, the company has invalidated existing admin API keys to protect its customer ...
ZDNet

Twitter warns of possible API keys leak

The smartest companies now approach cybersecurity with a risk management strategy. Learn how to make policies to protect your most important digital assets. Read now Twitter is notifying developers ...
SiliconANGLE

Over 1,500 apps found leaking API keys and potentially exposing user data

Security researchers have uncovered more than 1,500 apps leaking the Algolia application programming interface key and application ID, potentially exposing user data. Discovered by researchers at ...