The Hacker News

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

Attackers are exploiting CVE-2026-4020 in Gravity SMTP to leak API keys, OAuth tokens, and system data from WordPress sites.
SDxCentral

AI, Machine Learning Are the New Battleground for API Exploits, According to New Wallarm Report

Findings uncover rapid acceleration in API vulnerabilities in new AI-related dev and infrastructure products like NVIDIA’s Triton Inference Server, and API incidents that impact major brands like ...
Threat Post

Cryptomining Attack Exploits Docker API Misconfiguration Since 2019

Campaign exploits misconfigured Docker APIs to gain network entry and ultimately sets up a backdoor on compromised hosts to mine cryptocurrency. Hackers behind a cryptomining campaign have managed to ...