Cryptopolitan on MSN

Chrome extension disguised as AI assistant expose 10K+ users OpenAI API keys

A Chrome browser extension posing as an artificial intelligence assistant is siphoning OpenAI credentials from more than ...
GIGAZINE

It turns out that sites created with 'Lovable,' a service that allows users to create websites with AI, have a security flaw that leaks users' API keys, email addresses, etc.

Lovable, a service that allows users to create web apps and websites using AI, contain flaws that could expose sensitive information such as users' names and email addresses. Developer Matt Palmer ...
Dark Reading

Cybercrooks Scrape OpenAI API Keys to Pirate GPT-4

Yesterday, moderators of the r/ChatGPT Discord channel banned a script kiddie who was freely sharing stolen OpenAI API keys with hundreds of other users. API keys allow developers to integrate ...
Bleeping Computer

Misconfigured Django Apps Are Exposing Secret API Keys, Database Passwords

Security researchers have begun stumbling upon misconfigured Django applications that are exposing sensitive information such as API keys, server passwords, or AWS access tokens. The main reason for ...