Braintrust Breach Exposes Customer API Keys in AWS Incident
Key Takeaways
- Braintrust confirmed unauthorized access to an AWS account containing customer API keys for cloud-based AI models
- The company is asking every customer to rotate API keys stored with Braintrust, despite claiming only one customer was impacted
- Security experts warn of potential downstream implications for AI companies relying on Braintrust's platform
What Happened
Braintrust, an AI evaluation startup valued at $800 million, has confirmed a security breach affecting customer API keys. The company disclosed that an attacker gained unauthorized access to one of its Amazon Web Services cloud accounts. That account contained API keys customers use to access cloud-based AI models.
In an email sent to customers on Monday and seen by TechCrunch, Braintrust acknowledged the incident and urged immediate action. The company is asking every customer to rotate any API keys stored with the platform.
“We've communicated with one impacted customer and to date have not found evidence of broader exposure.”
— Braintrust customer email
Braintrust publicly disclosed the incident on its website Tuesday. The company said it has contained the incident, locked down the compromised account, audited and restricted access across related systems, and rotated internal secrets.
Mixed Messages on Severity
Braintrust's public statements contain a notable contradiction. While the company confirmed unauthorized access and is asking all customers to rotate keys, spokesperson Martin Bergman told TechCrunch that there is "no evidence of a breach at this time." He said the company sent the email "out of an abundance of caution."
The cause of the breach remains under investigation. Braintrust has not disclosed how the attacker gained access, how long they had access, or what specific data may have been exposed beyond customer API keys.
Why This Matters for AI Companies
Braintrust provides a platform for companies to monitor AI models and products. CEO Ankur Goyal has described it as an "operating system for engineers building AI software." The startup raised $80 million in a Series B funding round in February 2026, reaching an $800 million valuation.
The breach has implications beyond Braintrust's direct customers. Jaime Blasco, co-founder of cybersecurity startup Nudge Security, received a breach alert from Braintrust. He warned that the incident could have "downstream implications for affected customers," particularly AI companies that rely on Braintrust's services.
Related coverage of AI API infrastructure changes
API keys are prime targets for attackers. They provide direct access to cloud services, AI models, and sensitive data. Once stolen, attackers can use these keys to access customer systems, run up compute costs, or extract proprietary data. The keys Braintrust stores let customers access cloud-based AI models from providers like OpenAI, Anthropic, and others.
Third-Party Risk in the AI Stack
This breach highlights a growing concern in the AI industry: supply chain risk. Companies building AI products often rely on multiple third-party services for model access, evaluation, monitoring, and deployment. Each service becomes a potential attack vector.
Hackers frequently target corporate accounts on cloud services and third-party platforms. These services often store secrets like API keys, making them high-value targets. A single breach can cascade across an entire customer base.
Another recent supply chain security incident
What Braintrust Customers Should Do Now
- Rotate all API keys stored with Braintrust immediately
- Check logs for any unusual API activity during the exposure window
- Review access patterns on connected AI model providers like OpenAI or Anthropic
- Update keys in all production systems that use Braintrust-stored credentials
- Enable additional monitoring on cloud accounts connected to Braintrust
Companies should also consider whether to continue storing API keys with third-party platforms. Alternatives include using secrets managers with tighter access controls, or implementing just-in-time credential provisioning.
Logicity's Take
Frequently Asked Questions
What data was exposed in the Braintrust breach?
Braintrust confirmed that customer API keys for accessing cloud-based AI models were stored in the compromised AWS account. The company has not disclosed the full scope of exposed data.
Should I rotate my API keys if I use Braintrust?
Yes. Braintrust is asking every customer to rotate any API keys stored with the platform, regardless of whether they've been notified of direct impact.
How did attackers access Braintrust's AWS account?
Braintrust has not disclosed the attack vector. The company says the cause of the breach is under investigation.
Is Braintrust safe to use after the breach?
Braintrust says it has contained the incident and locked down the compromised account. However, customers should make their own risk assessment based on their security requirements.
Need Help Implementing This?
Source: TechCrunch / Lorenzo Franceschi-Bicchierai
Huma Shazia
Senior AI & Tech Writer
Related Articles
Browse all
Robotaxi Companies Are Hiding How Often Humans Take the Wheel
Autonomous vehicle firms like Waymo and Tesla are under scrutiny for refusing to disclose how often remote operators step in to control their self-driving cars. A Senate investigation reveals major gaps in transparency, raising safety and accountability concerns.
Wisconsin Governor Throws a Wrench in Age Verification Plans
Wisconsin Governor Tony Evers has vetoed a bill that would have required residents to verify their age before accessing adult content online, citing concerns over privacy and data security. This move comes as several other states have already implemented similar age check requirements. The veto has significant implications for the future of online age verification.
Apple's App Store Empire Under Siege: The Battle for the Future of Tech
The long-running feud between Apple and Epic Games has reached a boiling point, with Apple preparing to take its case to the Supreme Court. The tech giant is fighting to maintain control over its App Store, while Epic Games is pushing for more freedom for developers. The outcome could have far-reaching implications for the entire tech industry.
Tesla's Remote Parking Feature: The Investigation That Didn't Quite Park Itself
The US auto safety regulators have closed their investigation into Tesla's remote parking feature, but what does this mean for the future of autonomous driving? We dive into the details of the investigation and what it reveals about the technology. The National Highway Traffic Safety Administration found that crashes were rare and minor, but the investigation's closure doesn't necessarily mean the feature is completely safe.
Also Read
5 Pixel Built-In Apps That Can Replace Your Paid Tools
Google's Pixel phones ship with features that duplicate what many users pay for separately. The Recorder app handles transcription with AI summaries. Call Screen blocks spam before it rings. Now Playing identifies songs without an app. A writer ditched Otter.ai and other paid services after discovering what was already on his phone.
6 TV Shows That Got Better After Their First Season
Some of the best television series stumbled out of the gate before finding their creative footing. From Always Sunny's Danny DeVito addition to shows that narrowly escaped cancellation, here are six series that transformed from promising starts into memorable television.
Claude Doubles API Limits After Anthropic-SpaceX Deal
Anthropic has doubled hourly API rate limits for Claude Pro and Max subscribers and removed peak-hour throttling. The changes come from a new partnership with SpaceX that gives Claude access to over 220,000 NVIDIA GPUs at the Colossus 1 data center.