A DOGE staffer with entry to the personal info on hundreds of thousands of Individuals held by the U.S. authorities reportedly uncovered a non-public API key used for interacting with Elon Musk’s xAI chatbot.
Impartial security journalist Brian Krebs experiences that Marko Elez, a particular authorities worker who in latest months has labored on delicate methods on the U.S. Treasury, the Social Safety Administration, and Homeland Safety, lately printed code to his GitHub containing the personal key. The important thing allowed entry to dozens of fashions developed by xAI, together with Grok.
Philippe Caturegli, founding father of consultancy agency Seralys, alerted Elez to the leak earlier this week. Elez eliminated the important thing from his GitHub however the important thing itself was not revoked, permitting continued entry to the AI fashions.
“If a developer can’t hold an API key personal, it raises questions on how they’re dealing with much more delicate authorities info behind closed doorways,” Caturegli advised KrebsOnSecurity.
