AI companies keep publishing private API keys to GitHub

"Hugging Face tokens are notorious for allowing access to private AI models," said Berkovich. "The leaked Hugging Face token belonging to an AI 50 company could have exposed access to ~1,000 private ...
Infosecurity Magazine

65% of Leading AI Companies Found With Verified Secrets Leaks

A new study has revealed that nearly two-thirds of leading private AI companies have leaked sensitive information on GitHub.
The Hacker News

CISO's Expert Guide To AI Supply Chain Attacks

AI-driven supply chain attacks surged 156% as breaches grew harder to detect and regulators imposed massive fines.
CSO Online

AI startups leak sensitive credentials on GitHub, exposing models and training data

Experts say the leaks highlight how fast-growing AI firms may be prioritizing innovation over basic DevSecOps hygiene, ...