The token for crypto social media platform friend.tech has plummeted after its team transferred the admin and ownership of its smart contracts to Ethereum’s null address — permanently ...

JFrog’s new Xray Secrets Detection uncovered active access tokens in popular open-source software registries including Docker, npm, and PyPI. Here are our findings and takeaways.

Twitter is emailing developers stating that their API keys, access tokens, and access token secrets may have been exposed in a browser's cache.

Google is downplaying reports of malware abusing an undocumented Google Chrome API to generate new authentication cookies when previously stolen ones have expired.