Global Threat
Intelligence.
Real-time cybersecurity news, vulnerability disclosures, and research analysis curated from verified sources.
Global regulators say AI image tools don't get a free pass on privacy rules
: Watchdogs warn models that can generate realistic images of people must comply with data protection laws
AWS says more than 600 FortiGate firewalls hit in AI-augmented campaign
: Off-the-shelf tools helped Russian-speaking cybercrime group run riot
Show HN: A DeFi data API where AI agents pay per call via HTTP 402 micropayments
HTTP 402 Payment Required has been in the spec since 1997, “reserved for future use.” Turns out the future is AI agents that need to pay for API calls without signing up for anything.<p>I built a DeFi/crypto data API that uses the x402 protocol (by Coinbase) to handle payment natively in the HTTP layer. No API keys, no subscriptions, no accounts. An agent sends a request, gets back a 402 with payment details, pays in USDC on Base, and retries — all in one flow.<p>How it works:<p>1. Client calls an endpoint 2. Server returns 402 with payment instructions (x402) 3. Client signs a USDC payment (0.001–0.008 USDC per call) and retries with a payment proof header 4. Server verifies payment and returns the data<p>The x402 facilitator (middleware) handles verification, so the server just defines prices and serves data.<p>8 endpoints currently live: token prices, gas tracker, DEX swap quotes, token security scanner, whale tracker, DeFi yield scanner, funding rates, and wallet profiler. Each call costs fractions of a cent (1,000 lookups/day is roughly $1–5).<p>Built with Express.js. The server is registered as ERC-8004 Agent #18763 on Base mainnet. The whole thing is ~500 lines of code — most of the complexity lives in the x402 facilitator library.<p>Live: <a href="https://x402-api.fly.dev" rel="nofollow">https://x402-api.fly.dev</a> (<a href="https://x402-api.fly.dev/" rel="nofollow">https://x402-api.fly.dev/</a>) Code: <a href="https://github.com/fernsugi/x402-api-server" rel="nofollow">https://github.com/fernsugi/x402-api-server</a> Writeup: <a href="https://dev.to/fernsugi/i-built-a-defi-data-api-where-ai-agents-pay-per-call-heres-how-oeg" rel="nofollow">https://dev.to/fernsugi/i-built-a-defi-data-api-where-ai-age...</a>
NZ health app breach: Alive patients marked dead, names changed to Charlie Kirk
Signed, Sealed, Stolen: How We Patched Critical Vulnerabilities Under Fire [video]
Enjoy the videos and music you love, upload original content, and share it all with friends, family, and the world on YouTube.