Doge employee licks the private Xai -API key from the sensitive database

A security researcher has uncovered a worrying API key -Cleck
According to reports, the leak comes from the employee Marko Elez von Doge
This is not the first security problem that comes from Doge

An employee who has access to the personal data of millions of Americans has apparently leaked the API key at least four dozen LLMS developed by the artificial intelligence company Xai, including X's (formerly Twitter) own chatbot grok.

Security expert Brian Krebs announced that Marko Elez, an employee of the Department of Government Efficiency of Elon Musk, had the work in the departments of DOGE in the departments of the US social security agency as part of the work of Doge as part of the work of Doge in the departments of the US social security departments to improve efficiency.

Ironically, the researchers recently uncovered that the login information of a Doge Worker was exposed by info -tealing malware. Therefore, Doge's safety data record has so far been less than impressive.

Grok exposed

A code script was hired for Github called 'Agent.py', which contained a private application programming interface (API) for Xai from Elez. This was first scanned by Gitguardian, a company, the Github according to API secret bins, database registration information and certificates – and the affected users.

The exposed API key made it possible to access at least 52 different LLMs used by XAI. The latest LLM called “Grok 4-0709”, which was created on July 9, 2025 – according to Chief Hacking Officer at Security Consultancy Seralys, Philippe Cateregli.

Citygli warned the cancer security: “If a developer cannot keep an API key privately, he raises questions about how to deal with far more sensitive government information behind closed doors.”

The code repository, which contains the private API key, has been removed since Elez has been notified by e -mail from the leak. However, the key is still working and has not yet been revoked, so that the problem is far from resolved.

This is not the first time that internal Xai -APIs are leaked through. LLMs were presented for other organizations of Musk such as SpaceX, Tesla and Twitter/X, which were exposed at the beginning of 2025, confirmed cancer.

“A leak is a mistake,” said Citygli, “but if the same sensitive key is repeatedly exposed, it is not just bad luck, it is a sign of deeper negligence and a broken security culture.”

topicnews · July 16, 2025

Doge employee licks the private Xai -API key from the sensitive database

You may also like...

Recent Posts

topicnews · July 16, 2025

You may also like...

Mysterious water leak still flowing from auto parts store in Ocean Springs

MMA DFS and betting breakdown for UFC 308

Gwinnett County bus driver “hit” and “choked” a middle school student.

Recent Posts