Microsoft warns that an OpenAI API is being abused as a backdoor for 'espionage'

On Monday, Microsoft Detection and Response Team (DART) researchers warned that an OpenAI API was being abused as a backdoor for malware. The researchers concluded that bad actors were using the novel ...

Microsoft warns a key OpenAI API is being exploited to launch cyberattacks

"Instead of relying on more traditional methods, the threat actor behind this backdoor abuses OpenAI as a C2 channel as a way ...
Microsoft

SesameOp: Novel backdoor uses OpenAI Assistants API for command and control

Microsoft Incident Response – Detection and Response Team (DART) researchers uncovered a new backdoor that is notable for its novel use of the OpenAI Assistants Application Programming Interface (API) ...
Visual Studio Magazine

VS Code Expands AI Flexibility with Bring Your Own Key

Microsoft expanded model choice in VS Code with Bring Your Own Key (BYOK), enabling developers to connect models from any provider and manage them through a new extensible API.
GitHub

Improve Gemini CLI API Key Authentication User Experience

The current error message ("GEMINI_API_KEY environment variable not found...") is unhelpful and can be frustrating for new users. They are left without clear ...

Prediction: Alphabet Will Be Worth More Than Microsoft by 2030

Microsoft may have the first-mover advantage, but in five years, Alphabet could be the more valuable company.
GitHub

Bug: Prowler API Fails Token Generation and UI Login on Fresh Self-Host Deployment (Missing RSA Keys)

Wait for all containers (api, ui, postgres, valkey) to start. Open http://localhost:3000 and attempt to register a new user from the UI. Try to log in with that same ...
The Hacker News

SaaS Breaches Start with Tokens - What Security Teams Must Watch

Token theft is a leading cause of SaaS breaches. Discover why OAuth and API tokens are often overlooked and how security teams can strengthen token hygiene to prevent attacks. Most companies in 2025 ...