GIGAZINE

Googleが「公開してOK」と案内していたAPIキーがGeminiの認証キーにも ...

GoogleはFirebaseやGoogleマップなどのAPIキーを「公開しても安全なAPIキー」として案内しています。しかし、同じキーを用いて管理者のGeminiにアクセス可能なことがTruffle Securityの調査によって判明しました。 Google API Keys Weren't Secrets. But then Gemini Changed the Rules.
MSN による配信

You can get a free Gemini API key right now with no billing required — here's what to do ...

You'd think Google's Gemini API is one of those tools that only unlocks after you hand over a credit card and brace for a future invoice. But that's not really how it plays out. Google offers a free ...
cybernews

Google cracks down on unrestricted API keys to stop Gemini billing hackers

Changes prevent malicious hackers from causing massive unauthorized cloud bills. For years, Google told developers that Google API keys, used for Maps, Firebase ar other services, were not secrets.
Bleeping Computer

Previously harmless Google API keys now expose Gemini AI data

Google API keys for services like Maps embedded in accessible client-side code could be used to authenticate to the Gemini AI assistant and access private data. Researchers found nearly 3,000 such ...
heise online

Google's unprotected API keys a security and cost risk due to Gemini AI

Google is working to fix a problem with its API keys after security researchers pointed out possible misuse. This is because the keys for accessing Google's cloud services, such as Maps or Firebase, ...