> TritonInfoSec News
Home / Mar 01, 2026 / Story
0
#4 The Hacker News general February 28, 2026 at 09:56 UTC

Thousands of Public Google Cloud API Keys Exposed with Gemini Access After API Enablement

By [email protected] (The Hacker News)

AI Summary

Truffle Security discovered nearly 3,000 Google Cloud API keys (prefixed with "AIza") embedded in client-side code that could be abused to authenticate to Gemini AI endpoints and access private data. The keys, originally meant as project identifiers for billing, gained unauthorized access to sensitive AI services when Gemini APIs were enabled.

Read full article → https://thehackernews.com/2026/02/thousands-of-pub…

Relevance score: 88.0/100

# More from March 01

  1. 1
    $4.8M in crypto stolen after Korean tax agency exposes wallet seed BleepingComputer
  2. 2
    Canadian Tire Data Breach Impacts 38 Million Accounts SecurityWeek
  3. 3
    Who is the Kimwolf Botmaster “Dort”? Krebs on Security
  4. 5
    QuickLens Chrome extension steals crypto, shows ClickFix attack BleepingComputer
  5. 6
    ClawJacked Flaw Lets Malicious Sites Hijack Local OpenClaw AI Agents via WebSocket The Hacker News
  6. 7
    900 Sangoma FreePBX Instances Infected With Web Shells SecurityWeek
  7. 8
    ScarCruft Uses Zoho WorkDrive and USB Malware to Breach Air-Gapped Networks The Hacker News
  8. 9
    Juniper Networks PTX Routers Affected by Critical Vulnerability SecurityWeek
  9. 10
    Malicious Go Crypto Module Steals Passwords, Deploys Rekoobe Backdoor The Hacker News