I just found a secrets and keys management tool that i can daily drive. @sikkerkey has a better beginner friendly plan and advanced features for security and collaboration. will use it and give feedback after a few months. @apikeys @DevTools

Pero te ves bien cabron haciendolo desde la terminal Otorgando claves, apikeys y service accounts como una bestia

Most wallets make agent solutions for dev users, but 80% of AI users don't know what an npm or apikeys package is. Blockvault makes it super easy for all users to use AI Agents and pay for services with x402.

A troca de apikeys foi consequência dessa rotação global, não a causa. Conversando com o Chris essa semana, acho que eles erraram na distribuição dessa mudança, mas tô sendo engenheiro de obra pronta aqui.

Tbvh, I have been feeling like shit for about a week now. Working now feels like a chore... Anyways here is a basic public API I created implementing DRF, apikeys, google oauth. check it out here... naij-archive.vercel.app/ What should I work on next?

youtu.be/IWmtSV4LcFg Live Classes Form Link == docs.google.com/forms/d/e/1F… Pre Recorded Classes Course Link == hackerinsight.gumroad.com/l/… #BugBounty #EthicalHacking #CyberSecurity #BugHunting #APIKeys

2024 was about talking to AI. 2026 is about AI working for you. 💡 The shift is Agentic AI. Instead of just generating text, these systems think, use tools, and execute multi-step workflows autonomously. #Innovation #AI #agenticai #apikeys #agents #RAGsystem

Cómo que no paso, justo iba a ir a por sus apikeys

Ghost CMS under attack. A massive campaign is exploiting a critical SQLi flaw to hijack sites and deliver malware. Over 700 domains hit. bit.ly/4tWVF1y #Domains #APIKeys #Cybersecurity

🇦🇪 A threat actor on an underground forum is claiming to have breached UAE-based car rental platform “eZhire” and is advertising what appears to be a large-scale dataset allegedly containing customer KYC documents, operational data, and internal infrastructure information. According to the forum post, the actor claims the exposure includes: • Government-issued ID/KYC photos • Full names, DOBs, phone numbers, and addresses • Email addresses and hashed passwords • Exact order coordinates and device metadata • IMEI numbers and operating system details • Internal source code • RSA private keys and API keys • Alleged Twilio message exports • Internal PDFs, deposit slips, and vehicle inspection records • Photos documenting vehicle damage and operational workflows The actor further claims: • Approximately 1.3TB of data • Nearly 1 million customer records • Data spanning 2016–2026 • Global customer exposure affecting users across multiple countries At this stage: • The claims remain unverified • No official confirmation has been publicly issued • The authenticity and scope of the alleged dataset are unknown If legitimate, this could represent a significant operational and privacy incident due to the combination of: • Identity documents • Geolocation/order data • Device identifiers • Infrastructure secrets and API credentials • Customer communication records Particularly concerning elements include: • Alleged RSA private keys and API keys • Potential exposure of KYC/identity verification photos • Location tracking data tied to rentals • Internal operational documentation This combination could potentially enable: • Identity theft and account takeover attempts • SIM swap and targeted phishing campaigns • Fraud involving stolen IDs • Infrastructure compromise or service abuse • Supply chain or API exploitation • Physical security and stalking concerns tied to precise coordinates It is also important to note: • Underground forum actors frequently exaggerate breach size and impact • Old datasets are sometimes repackaged as “new” leaks • Sample screenshots alone do not confirm full compromise claims However, given the sensitivity of the alleged data categories, organizations handling mobility, KYC, and customer identity verification should treat similar exposures as high-risk scenarios. Recommended immediate actions for potentially affected organizations include: • Rotating exposed API credentials and cryptographic keys • Reviewing Twilio and communication platform logs • Auditing cloud storage and production servers • Investigating unauthorized database exports • Monitoring for credential stuffing activity • Reviewing KYC document handling and retention policies Users should also remain cautious of: • Phishing SMS messages • Fake customer support calls • Fraud involving rental verification or account recovery • Suspicious identity verification requests This remains an unverified underground claim at the time of reporting. #UAE 🇦🇪 #DDW #Intelligence #CyberSecurity #DarkWeb #DataLeak #KYC #Privacy #ThreatIntelligence #Infosec #APIKeys #IdentityTheft #CarRental #MiddleEast

ClickUp API Key Exposure Leaves Corporate and Government Email Data Public for Over a Year cysecurity.news/2026/05/clic… #API #APIAttack #APIKeys

first we had JPEGs. then memecoins. now it's time for degens to start trading apikeys

Betterleaks 🔍🛡️⚡ | El escáner de secretos rápido y altamente configurable ¡El sucesor moderno de Gitleaks, construido para velocidad y precisión! Escanea repositorios Git, directorios, archivos locales o entrada por stdin en cuestión de segundos. Binario ligero escrito en Go, sin dependencias externas y compatible con cualquier sistema. Detecta claves API, tokens, contraseñas y credenciales con reglas avanzadas, filtrado CEL para reducir falsos positivos, y lo más potente: valida automáticamente si los secretos detectados siguen activos mediante peticiones HTTP asíncronas. Ideal para integrar en pipelines de DevSecOps, CI/CD y auditorías de seguridad, ayudando a prevenir fugas de secretos antes de que sean explotadas. Solo úsalo en tus propios entornos, repositorios o laboratorios autorizados. Usarlo contra sistemas o repositorios ajenos sin permiso viola términos de servicio y la ley. #devsecops #secrets #pentest #ciberseguridad #ethicalhacking #golang #opensource #bugbounty #cicd #git #apikeys #redteam

Cursor AI editor found storing API keys and tokens in an unprotected SQLite database, allowing extensions to steal credentials silently. CVSS 8.2. No patch yet. #CursorAI #CyberSecurity #InfoSec #AI #DeveloperSecurity #APIKeys #CredentialTheft #Security securityonline.info/cursor-a…

we have ported off all unbrowse api keys to our own personal system. no more using unkey for apikeys! 😎

Quiero compartirles el nuevo curso de Python: Inteligencia artificial aplicada. Es un curso donde vamos a utilizar a Python como herramienta para generar nuestras propias aplicaciones con Inteligencia Artificial. Las primeras tres secciones son: 1. Introducción: Vemos que es el curso, que debes de saber e instalaciones recomendadas. 2. Fundamentos: Aquí creamos nuestro primer proyecto, obtenemos nuestras APIKeys de OpenAI y hacemos un Chatbot en terminal. 3. Propmts para desarrolladores: Aquí te paso algunas técnicas, prácticas y el uso de roles para poder crear Prompts útiles para nuestro curso. Vemos técnicas como: Zero Shot, Few Shot, Chain of Thought y Prompt Templates. Espero que les guste mucho está sección disponible con la suscripción Pro de Devtalles.

OpenIA te da de baja las apikeys que aparecen en repos públicos.. No pregunten cómo lo descubrí

Crazy week in 🇮🇳 thanks to @ycombinator, summer programs. Find your side-event => luma.com/yc-sus-side-events (summerhacks, #epochs26, @aiweekendsxyz techroast, etc) Join any of the events visit aigrants.in/?ref=<eventname> to get voice credits from @smallest_AI Top teams get GPU from @jarvislabsai or cloud credits from @awscloud PS: here's me cranking out free apikeys on cli1, sending them faster on cli2, thanks to @cursor_ai , agent-browser, google workspace cli, @postmarkapp