all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Issue 213: Supply chain vulnerability in IBM Cloud, hardcoded API keys in Algolia portal, JSON-based SQL attacks

Add to bookmarks
Jan. 26, 2023, 6:43 p.m. | Colin Domoney

API Security News apisecurity.io

This week, we have news of three vulnerabilities. First up is a supply chain vulnerability in the IBM Cloud platform, which is reported to be the first of its kind to affect a cloud provider. The second is another case of hardcoded API keys, this time in the Algolia AI search portal, and the third [...]


Read More...


The post Issue 213: Supply chain vulnerability in IBM Cloud, hardcoded API keys in Algolia portal, JSON-based SQL attacks appeared first on …

algolia api api keys attacks case cloud cloud platform cloud provider hardcoded ibm ibm cloud issue json keys newsletter archive platform portal search sql supply supply chain supply chain vulnerability third vulnerabilities vulnerability

Visit resource

More from apisecurity.io / API Security News

Issue 247: Dropbox and Dell breaches, vulnerability in Next.js, API growth causing concerns 1 week, 2 days ago | apisecurity.io
api breach breaches dell +16
Issue 246: Critical flaw in API portal, securing GraphQL, building bulletproof APIs 3 weeks, 2 days ago | apisecurity.io
api apis api security application +20
Issue 245: Delinea patches API vulnerability, API vulnerability in Palo Alto devices 1 month ago | apisecurity.io
alto api api design api vulnerability +25
Issue 244: Threats to enterprises in the cloud, looming threats to APIs, API SDK generation … 1 month, 3 weeks ago | apisecurity.io
api apis articles challenges +13
Issue 243: Economics of API attacks, understanding CORS, blocking compromised API tokens 2 months ago | apisecurity.io
api api attacks apis articles +20
Issue 242: API governance to avoid tech sprawl, API security in digital transformation, AI for … 2 months, 2 weeks ago | apisecurity.io
age api api governance apis +16
Issue 241: Two critical flaws in FortiSIEM product, making public APIs private, API security strategy 3 months ago | apisecurity.io
api apis api security api security strategy +22
Issue 240: Spoutible API leakage, 15M Trello profiles scraped, API secret tokens leaked 3 months, 2 weeks ago | apisecurity.io
api api security atlassian big +19
Issue 239: Hugging Face API token breach, SonicWall firewalls exploit, Kubernetes API gateway guide 4 months ago | apisecurity.io
api api gateway api security api security checklist +20

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com