API Keys Archives

Jailbroken Gemini AI Model Supercharged Russian-Speaker’s Fraud Campaign

Jeffrey Burt | May 26, 2026 | ai llm jailbreak, API Keys, credential stealing, crypto fraud, Google Gemini, MAGA, pump-and-dump, QAnon, RAT malware, Trend Micro

A solo Russian-speaking threat actor was able to scale his small five-year fraud operation aimed at MAGA and QAnon followers last year when he began using a jailbroken Google Gemini AI model ...

Security Boulevard

PAT vs OAuth: When Your B2B SaaS Should Support Each (and How to Offer Both)

SSOJet - Enterprise SSO & Identity Solutions | May 22, 2026 | API Authentication, API Keys, B2B SaaS, developer experience, OAuth, personal access token

A practical decision guide on personal access token vs OAuth for B2B SaaS: when to use each, PAT design best practices, dual-auth middleware, and a migration path from legacy API keys ...

SSOJet - Enterprise SSO & Identity Solutions

SEC incident response C-Suite-Data-Breach

ShinyHunters Claims Responsibility for Breach of EdTech Company Instructure

Jeffrey Burt | May 4, 2026 | API Keys, cybersecurity education, Data breach, data extortion, data leak site, Instructure, Kaspersky Lab, Salesforce, ShinyHunters,

The prolific extortion group ShinyHunters claimed responsibility for the breach of Edtech vendor Instructure's systems, stealing 3.65 TB of sensitive information, including names, email addresses, and messages of students, teachers, and others ...

Security Boulevard

Using JWT as API Keys: Security Best Practices & Implementation Guide

SSOJet - Enterprise SSO & Identity Solutions | January 14, 2026 | API Keys, Authentication, iam, jwt, sso

Learn how to use JWT as API keys for enterprise apps. We cover security best practices, oidc integration, and avoiding common auth breaches ...

SSOJet - Enterprise SSO & Identity Solutions

Stop Geo-Spoofing with Secure API Integration for Mobile Application

George McGregor | August 8, 2025 | API Keys, API security, API Security - Analysis, News and Insights, App Attestation

Location Spoofing or Geo Spoofing is the act of deliberately falsifying the geographical location of a device. This can be performed using various techniques such as GPS manipulation, tweaking OS settings, or ...

Approov Blog

Stop Geo-Spoofing with Secure API Integration for Mobile Application

George McGregor | August 8, 2025 | API Keys, API security, API Security - Analysis, News and Insights, App Attestation

Approov Blog

Securing API Keys: Why It Should Be Your Top Priority Now

Pearce Erensel | November 5, 2024 | API Keys, API security, API Security - Analysis, News and Insights, App Attestation, mobile app security, zero trust

I will cut to the chase in this blog. Protecting and managing the API keys MUST be number one on your security to-do-list. A wave of recent breaches show just how exposed ...

Approov Blog

How Poor API Security Led to Major Breaches in 2024

Shona Hossell | July 8, 2024 | API Abuse, API Keys, API security, API Security - Analysis, News and Insights, Mobile API Security, Mobile App Authentication, mobile app development

Major API Breaches in H1 of 2024 Earlier this year, we provided an overview of the significant security breaches from 2023. It's now clear that for API related breaches, this year is ...

Approov Blog

The Rise of Super Apps: Challenges & Opportunities in Mobile Security

Pearce Erensel | November 9, 2023 | API Keys, API security, API Security - Analysis, News and Insights, mobile app security, Mobile Security, rasp

In recent years, the tech world has witnessed a significant shift towards what are known as "super apps." These mobile applications have become increasingly popular, offering a plethora of services within a ...

Approov Blog

Do You Want to Know a Secret? Just Take a Look Inside Top Finance Apps

George McGregor | March 7, 2023 | A Series - Mobile API Security, API Keys, API security, API Security - Analysis, News and Insights, Business, Fintech, MitM Attack

Financial apps have access to valuable and sensitive personal data, so you would think mobile app security would be top-of-mind for financial institutions. But is it? ...

Approov Blog

API Keys

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On