{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreic6curjsnhpb455nqxv4pixmhkijzenjjcuqv5ihi65jc4o56c6gy",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3mfumvtmtuf22"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreibqfko6abbdgqpiscpdefd3p725myzhls2hqybegkmyznj5jyuvo4"
    },
    "mimeType": "image/webp",
    "size": 11492
  },
  "path": "/google-api-keys-expose-private-gemini-data-and-bills-after-silent-privilege-escalation/",
  "publishedAt": "2026-02-27T11:45:12.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "Google API Keys Expose Private Gemini Data and Bills After Silent Privilege Escalation",
    "VPN Central"
  ],
  "textContent": "Legacy Google API keys in public web code now access sensitive Gemini AI endpoints without warning. These keys, meant for Maps or Firebase, gain power when admins enable Gemini on the same project. Attackers grab private files, cached data, and rack up bills. Google once told developers to embed AIza… keys openly in JavaScript. Firebase […]\n\nThe post Google API Keys Expose Private Gemini Data and Bills After Silent Privilege Escalation appeared first on VPN Central.",
  "title": "Google API Keys Expose Private Gemini Data and Bills After Silent Privilege Escalation"
}