SecurityWeek

Google API Keys in Android Apps Expose Gemini Endpoints to Unauthorized Access

The Google API keys, all using the ‘AIza…’ format, can be abused for retroactive privilege escalation: a key that a developer ...

API Key Leak Exposes AWS, Stripe, OpenAI Credentials Across Thousands of Sites

Researchers found thousands of exposed API keys across 10 million webpages, including AWS, Stripe, and OpenAI credentials left vulnerable in public code.
TechJuice

Hackers Claim 4TB of Mercor Data Including Source Code and API Keys

Six months after raising $350 million at a $10 billion valuation, AI startup Mercor is dealing with the consequences of a ...
Security Boulevard

The AI Supply Chain is Actually an API Supply Chain: Lessons from the LiteLLM Breach

The recent supply chain attack involving Mercor and the LiteLLM vulnerability serves as a massive wake-up call for enterprise security teams. While the security industry has spent the last year ...
Knoxville News Sentinel

H33.ai launches the first Complete Post-Quantum Security Platform in the World, FHE-ZK-Biometrics-Keys-More, One API

The only platform that makes your entire organization quantum-proof – biometrics, AI, fraud, encryption – with one API key. No cryptography team required. The organizations investing millions and ...
Infosecurity Magazine

Google API Keys Quietly Gain Access to Gemini on Android Devices

A flaw in Google's API key system has reportedly exposed mobile applications to unintended access to its Gemini AI platform.

AI agent credentials live in the same box as untrusted code. Two new architectures show where the blast radius actually stops.

Anthropic and Nvidia have shipped the first zero-trust AI agent architectures — and they solve the credential exposure ...