ExtremeDullard@lemmy.sdf.org to Technology@beehaw.org · 20 hours agoDOGE staffer with access to Americans' personal data leaked private xAI API key | TechCrunchtechcrunch.comexternal-linkmessage-square6fedilinkarrow-up159arrow-down10file-text
arrow-up159arrow-down1external-linkDOGE staffer with access to Americans' personal data leaked private xAI API key | TechCrunchtechcrunch.comExtremeDullard@lemmy.sdf.org to Technology@beehaw.org · 20 hours agomessage-square6fedilinkfile-text
minus-squarepinball_wizard@lemmy.ziplinkfedilinkarrow-up4·12 hours ago “…checked [an API key] into GitHub…” Ouch. But who hasn’t? “Elez removed the key from his GitHub but the key itself was not revoked, allowing continued access to the AI models.” Okay, that’s deeply bad…Maybe has no idea how API keys, or the Internet works…? Definitely lacks security advisors (or has them and ignored them).
minus-squareExtremeDullard@lemmy.sdf.orgOPlinkfedilinkarrow-up2·6 hours ago Ouch. But who hasn’t? I haven’t. Committing keys in git repos is beyond sloppy. Whoever does it needs to be fired immediately.
Ouch. But who hasn’t?
Okay, that’s deeply bad…Maybe has no idea how API keys, or the Internet works…? Definitely lacks security advisors (or has them and ignored them).
I haven’t. Committing keys in git repos is beyond sloppy. Whoever does it needs to be fired immediately.