AI Firm Braintrust Prompts API Key Rotation After Data Breach

Braintrust recommends that customers access their org-level settings page, delete or revoke the existing secrets, configure new secrets, and confirm that they were rotated by checking their timestamps.The org-level AI provider API keys potentially exposed in the incident were likely stored for AI-forward companies such as Box, Cloudflare, Dropbox, Notion, Ramp, Stripe, and others, Nudge Security CTO Jaime Blasco toldSecurityWeek.“The blast radius isn’t Braintrust, it’s every downstream customer’s AI stack, and a single SaaS compromise fans out across dozens of LLM provider accounts. This is the new shape of supply chain risk: every AI eval, observability, and gateway tool a company adopts becomes a credential warehouse, and those warehouses are now a tier-one target,” Blasco said.Related:Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak ThreatsRelated:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data BreachRelated:Medtronic Hack Confirmed After ShinyHunters Threatens Data Leak

The org-level AI provider API keys potentially exposed in the incident were likely stored for AI-forward companies such as Box, Cloudflare, Dropbox, Notion, Ramp, Stripe, and others, Nudge Security CTO Jaime Blasco toldSecurityWeek.“The blast radius isn’t Braintrust, it’s every downstream customer’s AI stack, and a single SaaS compromise fans out across dozens of LLM provider accounts. This is the new shape of supply chain risk: every AI eval, observability, and gateway tool a company adopts becomes a credential warehouse, and those warehouses are now a tier-one target,” Blasco said.Related:Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak ThreatsRelated:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data BreachRelated:Medtronic Hack Confirmed After ShinyHunters Threatens Data Leak

“The blast radius isn’t Braintrust, it’s every downstream customer’s AI stack, and a single SaaS compromise fans out across dozens of LLM provider accounts. This is the new shape of supply chain risk: every AI eval, observability, and gateway tool a company adopts becomes a credential warehouse, and those warehouses are now a tier-one target,” Blasco said.Related:Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak ThreatsRelated:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data BreachRelated:Medtronic Hack Confirmed After ShinyHunters Threatens Data Leak

Related:Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak ThreatsRelated:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data BreachRelated:Medtronic Hack Confirmed After ShinyHunters Threatens Data Leak

Related:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data BreachRelated:Medtronic Hack Confirmed After ShinyHunters Threatens Data Leak

Related:Luxury Cosmetics Giant Rituals Discloses Data BreachRelated:Medtronic Hack Confirmed After ShinyHunters Threatens Data Leak

Related:Medtronic Hack Confirmed After ShinyHunters Threatens Data Leak

Ionut Arghire is an international correspondent for SecurityWeek.

In cyber-physical systems (CPS), just one hour of downtime can outweigh an entire annual security budget. Learn how to master the Return on Security Investment (ROSI) to align security goals with the bottom-line priorities.

Delve into big-picture strategies to reduce attack surfaces, improve patch management, conduct post-incident forensics, and tools and tricks needed in a modern organization.

Source: SecurityWeek