theregister

Google rushes Chrome update fixing two zero-days already under attack

Google has pushed out an emergency Chrome update to fix two previously unknown vulnerabilities that attackers were already exploiting before the patches landed. The bugs, tracked as CVE-2026-3909 and ...
theregister

Dev stunned by $82K Gemini bill after unknown API key thief goes to town

A developer says their company is on the hook for more than $82,000 in unauthorized charges after a stolen Google Gemini API key racked massive usage costs up in just 48 hours. "I am in a state of ...
GitHub

remoteStorage is a simple library that combines the localStorage API with a remote server to persist data across browsers and devices.

Storing data in localStorage is useful, but it's not a good solution when you store data that needs to be shared across multiple devices or browsers. For instance, let's say you want to show a welcome ...
The Hacker News

Thousands of Public Google Cloud API Keys Exposed with Gemini Access After API Enablement

New research has found that Google Cloud API keys, typically designated as project identifiers for billing purposes, could be abused to authenticate to sensitive Gemini endpoints and access private ...
PC World

Google broke up an international spy ring using… Sheets

PCWorld reports on how Google disrupted a sophisticated international spy ring called ‘GRIDTIDE’ that exploited Google Sheets as a backdoor for espionage. The China-affiliated group UNC2814 used the ...