{"id":116,"date":"2026-02-28T11:09:00","date_gmt":"2026-02-28T11:09:00","guid":{"rendered":"https:\/\/thedigitalfortress.us\/?p=116"},"modified":"2026-02-28T11:09:00","modified_gmt":"2026-02-28T11:09:00","slug":"thousands-of-public-google-cloud-api-keys-exposed-with-gemini-access-after-api-enablement","status":"publish","type":"post","link":"https:\/\/thedigitalfortress.us\/?p=116","title":{"rendered":"Thousands of Public Google Cloud API Keys Exposed with Gemini Access After API Enablement"},"content":{"rendered":"<p><br \/>New research has found that Google Cloud API keys, typically designated as project identifiers for billing purposes, could be abused to authenticate to sensitive Gemini endpoints and access private data.<br \/>\nThe findings come from Truffle Security, which discovered nearly 3,000 Google API keys (identified by the prefix \u00abAIza\u00bb) embedded in client-side code to provide Google-related services like<\/p>\n","protected":false},"excerpt":{"rendered":"<p>New research has found that Google Cloud API keys, typically designated as project identifiers for billing purposes, could be abused to authenticate to sensitive Gemini endpoints and access private data.&hellip;<\/p>\n","protected":false},"author":1,"featured_media":117,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[130,14,329,330,137,282,2,144,328,327],"class_list":["post-116","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","tag-access","tag-api","tag-cloud","tag-enablement","tag-exposed","tag-gemini","tag-google","tag-keys","tag-public","tag-thousands"],"_links":{"self":[{"href":"https:\/\/thedigitalfortress.us\/index.php?rest_route=\/wp\/v2\/posts\/116","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/thedigitalfortress.us\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/thedigitalfortress.us\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/thedigitalfortress.us\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/thedigitalfortress.us\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=116"}],"version-history":[{"count":0,"href":"https:\/\/thedigitalfortress.us\/index.php?rest_route=\/wp\/v2\/posts\/116\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/thedigitalfortress.us\/index.php?rest_route=\/wp\/v2\/media\/117"}],"wp:attachment":[{"href":"https:\/\/thedigitalfortress.us\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=116"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/thedigitalfortress.us\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=116"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/thedigitalfortress.us\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=116"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}