Braintrust Breach Exposes Customer API Keys in AWS Incident

Key Takeaways

• Braintrust confirmed unauthorized access to an AWS account containing customer API keys for cloud-based AI models
• The company is asking every customer to rotate API keys stored with Braintrust, despite claiming only one customer was impacted
• Security experts warn of potential downstream implications for AI companies relying on Braintrust's platform

What Happened

Braintrust, an AI evaluation startup valued at $800 million, has confirmed a security breach affecting customer API keys. The company disclosed that an attacker gained unauthorized access to one of its Amazon Web Services cloud accounts. That account contained API keys customers use to access cloud-based AI models.

In an email sent to customers on Monday and seen by TechCrunch, Braintrust acknowledged the incident and urged immediate action. The company is asking every customer to rotate any API keys stored with the platform.

“We've communicated with one impacted customer and to date have not found evidence of broader exposure.”

— Braintrust customer email

Braintrust publicly disclosed the incident on its website Tuesday. The company said it has contained the incident, locked down the compromised account, audited and restricted access across related systems, and rotated internal secrets.

Mixed Messages on Severity

Braintrust's public statements contain a notable contradiction. While the company confirmed unauthorized access and is asking all customers to rotate keys, spokesperson Martin Bergman told TechCrunch that there is "no evidence of a breach at this time." He said the company sent the email "out of an abundance of caution."

The cause of the breach remains under investigation. Braintrust has not disclosed how the attacker gained access, how long they had access, or what specific data may have been exposed beyond customer API keys.

Why This Matters for AI Companies

Braintrust provides a platform for companies to monitor AI models and products. CEO Ankur Goyal has described it as an "operating system for engineers building AI software." The startup raised $80 million in a Series B funding round in February 2026, reaching an $800 million valuation.

The breach has implications beyond Braintrust's direct customers. Jaime Blasco, co-founder of cybersecurity startup Nudge Security, received a breach alert from Braintrust. He warned that the incident could have "downstream implications for affected customers," particularly AI companies that rely on Braintrust's services.

API keys are prime targets for attackers. They provide direct access to cloud services, AI models, and sensitive data. Once stolen, attackers can use these keys to access customer systems, run up compute costs, or extract proprietary data. The keys Braintrust stores let customers access cloud-based AI models from providers like OpenAI, Anthropic, and others.

Third-Party Risk in the AI Stack

This breach highlights a growing concern in the AI industry: supply chain risk. Companies building AI products often rely on multiple third-party services for model access, evaluation, monitoring, and deployment. Each service becomes a potential attack vector.

Hackers frequently target corporate accounts on cloud services and third-party platforms. These services often store secrets like API keys, making them high-value targets. A single breach can cascade across an entire customer base.

What Braintrust Customers Should Do Now

1. Rotate all API keys stored with Braintrust immediately
2. Check logs for any unusual API activity during the exposure window
3. Review access patterns on connected AI model providers like OpenAI or Anthropic
4. Update keys in all production systems that use Braintrust-stored credentials
5. Enable additional monitoring on cloud accounts connected to Braintrust

Companies should also consider whether to continue storing API keys with third-party platforms. Alternatives include using secrets managers with tighter access controls, or implementing just-in-time credential provisioning.

Frequently Asked Questions

What data was exposed in the Braintrust breach?

Braintrust confirmed that customer API keys for accessing cloud-based AI models were stored in the compromised AWS account. The company has not disclosed the full scope of exposed data.

Should I rotate my API keys if I use Braintrust?

Yes. Braintrust is asking every customer to rotate any API keys stored with the platform, regardless of whether they've been notified of direct impact.

How did attackers access Braintrust's AWS account?

Braintrust has not disclosed the attack vector. The company says the cause of the breach is under investigation.

Is Braintrust safe to use after the breach?

Braintrust says it has contained the incident and locked down the compromised account. However, customers should make their own risk assessment based on their security requirements.

Source: TechCrunch / Lorenzo Franceschi-Bicchierai