API Key Leak Exposes AWS, Stripe, OpenAI Credentials Across Thousands of Sites

Researchers found thousands of exposed API keys across 10 million webpages, including AWS, Stripe, and OpenAI credentials left vulnerable in public code.

OpenAI identifies security issue involving third-party tool, says user data was not accessed

The ChatGPT maker said it found no evidence that its user data was accessed or that its systems or intellectual property were ...

A simple coding mistake is exposing API keys across thousands of websites

A large-scale study has revealed that websites are unintentionally exposing API keys tied to services like AWS, Stripe, and OpenAI, with most leaks traced back to publicly accessible JavaScript files.

OpenAI denies user data breach after Axios developer tool compromise; asks macOS users to update apps

OpenAI says no user data or systems were compromised after an Axios-related incident, but macOS users must update apps as the ...
Decrypt

OpenAI Plans Advanced Cybersecurity Product—With 'Trusted Access' Only

Both OpenAI and Anthropic are restricting access to their most powerful cybersecurity systems, releasing them only to vetted ...

OpenAI rotates macOS certs after Axios attack hit code-signing workflow

OpenAI is rotating potentially exposed macOS code-signing certificates after a GitHub Actions workflow executed a malicious ...