Findings

Google Secrets Found in AI Logs

Updated: June 19, 2025

findings log based findings api finding

Description

Severity: Medium

Tokens that match the format for Google secret keys were found in the AI logs.

Google secrets refer to sensitive tokens or keys used for authentication and authorization in Google Cloud services and APIs. These can include API keys, OAuth tokens, service account keys, or other credentials that grant access to Google services

Example Attack

An attacker finds a Google Cloud service account key using AI and uses it to access sensitive datasets in Google Cloud Storage, exfiltrating confidential business information.

Remediation

Remove exposed Google Cloud credentials from AI logs and rotate compromised keys. Use Google's Secret Manager to store sensitive authentication data securely. Implement AI guardrails to prevent secret exposure in responses and enforce logging policies that restrict the storage of sensitive credentials.

Need help?

Contact FireTail support

Previous (Findings - Log based findings)
GitLab secrets found in logs
Next (Findings - Log based findings)
Google secrets found in logs