Hosted on MSN

Hackers are using leaked Google API keys to go wild with Gemini AI for free

Exposed Google API keys allow attackers to run unlimited Gemini AI requests Developers experience severe financial losses due to unauthorized access to AI infrastructure Hardcoded credentials elevate ...
Dark Reading

Google API Keys Remain Active After Deletion

Google API keys aren't completely inactive after users delete them, giving attackers a small but significant window to continue abusing them. Joe Leon, researcher at Belgian startup Aikido Security, ...