Cybernews

Hackers can exploit thousands of exposed Google API keys to access Gemini and steal data

Exposed Google API keys previously not considered secrets can now inadvertently grant attackers access to sensitive Gemini ...
Hosted on MSN

AI companies keep publishing private API keys to GitHub

Leading AI companies turn out to be no better at keeping secrets than anyone else writing code.… Cloud security firm Wiz has found that 65 percent of the Forbes AI 50 "had leaked verified secrets on ...
The Hacker News

How Exposed Endpoints Increase Risk Across LLM Infrastructure

Exposed endpoints quietly expand attack surfaces across LLM infrastructure. Learn why endpoint privilege management is important to AI security.
Dark Reading

Too Many Secrets: Attackers Pounce on Sensitive Data Sprawl

Threat actors are having an easier time finding secrets today, as sensitive data leaks continue to spread beyond your average code repositories. Several high-profile attacks this year have illustrated ...
TechRepublic

AI Giants Accidentally Leaking Secrets on GitHub

Research found that 65% of the world’s most valuable AI firms accidentally exposed their most sensitive digital secrets on GitHub. These are industry titans with combined valuations exceeding $400 ...
Hosted on MSN

Security researcher uncovers 17,000 secrets in public GitLab repositories

Researcher Luke Marshall found 17,000 exposed secrets in GitLab Cloud repositories Leaked credentials risk hijacks, cryptomining, and deeper infrastructure compromise Marshall automated scans, earned ...

What 5 Million Apps Revealed About Secrets in JavaScript

Leaked API keys are nothing new, but the scale of the problem in front-end code has been largely a mystery - until now. Intruder's research team built a new secrets detection method and scanned 5 ...