api keys

3+ articles

AI Security AI Startup AI Training API integration AWS

Anthropic Halts Third-Party OAuth Access Across Claude Subscriptions

Anthropic has clarified its ban on third-party use of OAuth tokens for its Claude AI subscriptions, impacting tools like OpenCode and xAI systems. The policy aims to prevent IP theft, ensure compliance, and direct users towards paid API solutions.

Feb 21

Anthropic Halts Third-Party OAuth Access Across Claude Subscriptions

API Chaos: 12,000 Secrets Exposed in AI Training Data Leak

In a shocking discovery, Truffle Security researchers identified nearly 12,000 API keys and passwords in the Common Crawl dataset, a resource widely used in training AI models. These credentials, often embedded directly into HTML and JavaScript by developers, pose serious security threats. While efforts to cleanse AI training data of sensitive information are ongoing, the sheer volume makes complete sanitization challenging. This incident underscores the critical need for robust security practices in AI development.

Mar 3

API Chaos: 12,000 Secrets Exposed in AI Training Data Leak

DeepSeek's AI Database Exposed Online, Revealing Chat Histories and Secret Keys

DeepSeek, a burgeoning AI startup from China, suffered a major privacy setback as its entire ClickHouse database was found online, accessible to anyone without a password. This shocking security oversight included sensitive chat logs, API keys, and operational details, putting thousands of user interactions at risk. Fortunately, the slip-up was spotted by Wiz Research and swiftly rectified, yet it leaves behind an unsettling reminder of the industry's breakneck pace of development sometimes skipping over basic security measures.

Jan 31

DeepSeek's AI Database Exposed Online, Revealing Chat Histories and Secret Keys

Loading news...