API Security stories

‘BodySnatcher’ bug let attackers hijack ServiceNow AI agents to mimic users and create backdoor admin accounts on on-premise systems.

Rapid7 partners with ARMO to embed cloud runtime detection into its Command Platform, unifying exposure management and live threat response.

F5 rolls out AI Guardrails and AI Red Team to harden runtime security, blending adversarial testing with real-time policy enforcement.

Ping Identity appoints former Slack executive Adnan Chaudhry as chief revenue officer to drive global go-to-market amid AI identity boom.

Hydrolix launches Bot Insights to reveal hidden AI bot traffic and six-figure cost leaks, promising real-time visibility across CDNs.

Astra launches a continuous cloud scanner for AWS, Azure and GCP, promising fewer false alerts by validating which risks are truly exploitable.

Intruder finds over 42,000 sensitive tokens hidden in JavaScript bundles, exposing a major blind spot in modern web app security tools.

F5 rolls out Distributed Cloud Services 7.0, boosting API discovery, threat detection and networking for complex hybrid multicloud setups.

Thales launches AI Security Fabric to shield enterprise LLM and agentic AI apps from runtime threats like prompt injection and data leakage.

OWASP has launched its first Top 10 list for agentic AI, warning autonomous systems act as a powerful but risky new digital workforce.

Nudge Security unveils expanded AI-in-SaaS controls to monitor chatbot use, browser activity and risky integrations across cloud apps.

Radware doubles its global DDoS cloud capacity to 30 Tbps, adding AI-driven DefencePro X to counter rising large-scale and complex attacks.

Technology leaders warn 2026 will be a make-or-break year as businesses demand tangible AI value, workflow redesign and tighter security.

AI security start-up Token Security warns AI agents will outnumber humans in firms by 2026, becoming the most privileged, risky identities.

Security chiefs warn CISOs to pivot from AI hype to systemic cloud risk as supply-chain attacks on major platforms are set to soar.

Mobile security specialist Approov has opened a new Edinburgh New Town HQ as it targets global expansion and continued hiring into 2026.

AI agents are set to strain data, security and talent in 2026, as enterprises bet on a few core frameworks and brace for identity attacks.

Radware predicts AI-driven bots will dominate internet traffic by 2026, forcing firms to rethink API defences, DDoS and compliance.

Akamai and Visa are teaming up to secure AI shopping agents, blending edge security with payment checks to tackle fraud in agentic commerce.

Contrast plugs its ADR into Datadog Cloud SIEM, streaming verified runtime attack data to slash alert noise and speed SecOps response.