Cybersecurity Headlines FBI email theft, Lloyds Bank glitch, API keys running loose
8 snips
Mar 30, 2026 A high-profile email theft from a director's personal account makes headlines. A major bank's app glitch briefly exposed customer payment and NI data. Researchers uncover thousands of exposed API credentials on public sites. New exploit additions, macOS stealers, and web plugin flaws round out the cyber threat roundup.
AI Snips
Chapters
Transcript
Episode notes
FBI Director's Personal Emails Leaked By Handala
- FBI Director Kash Patel's personal emails and photographs from 2010–2019 were allegedly stolen and leaked by Handala.
- Handala claimed the leak was retaliation after the FBI took down Handala sites and offered a $10 million bounty on members.
Fix Mobile App Updates Immediately After Deployment
- Lloyds Banking Group exposed nearly 500,000 customers' payment, account, and national insurance data due to a software defect in a mobile app update.
- The defect occurred during an IT update to Lloyds, Halifax and Bank of Scotland apps and briefly made transaction details visible to other users.
Valid API Keys Found Publicly Across Millions Of Sites
- Stanford found almost 2,000 valid API credentials across 10,000 web pages after scanning 10 million sites, exposing programmatic access to cloud, payment, and code services.
- Exposed keys belonged to corporations, critical infrastructure, and government, granting access to AWS, GitHub, Stripe, and OpenAI.