CPO Magazine

Researchers Warn Benign Google API Keys Could be Exploited to Rack Up Gemini AI Bills

Researchers with Truffle Security are warning that old and seemingly benign Google API keys might now be weaponized by threat actors after gaining Gemini AI authorization permissions, in a destructive ...

A stolen Gemini API key turned a $180 bill into $82,000 in two days

One of the affected developers shared the incident on Reddit. According to the post, the Google Cloud API key was compromised between February 11 and February ...

Google to disable Customer Match uploads in Ads API

From April 1, 2026, Google will block inactive developer tokens from uploading Customer Match data via the Google Ads API.

Google’s new command-line tool can plug OpenClaw into your Workspace data

Google launched a Gemini command-line tool last year, and now it has a new AI-centric command-line option for cloud products.