Techly NewsGet the app

Get the latest tech news

Online group exposes Rabbit R1 massive API security flaw


Researchers have discovered a major Rabbit R1 flaw, allowing anyone to read any R1's responses, and much more.

Update: June 28, 2024 (7:04 AM ET): Rabbit has directed us to a page on its website that’s devoted to these exposed API keys. As part of the rotation process, the team updated relevant portions of the codebase to ensure that all secrets were properly stored,” the company explained. A team of security researchers collectively known as Rabbitude reported that it gained access to Rabbit’s codebase on May 16 and discovered several hardcoded API keys.

Get the Android app

Or read this on r/technology

Read more on:

Photo of API

API

Photo of Rabbit R1

Rabbit R1

Photo of Online group

Online group

Related news:

News photo

Rabbit R1 AI Device Exposed by API Key Leak

News photo

Chift lets SaaS companies integrate with dozens of financial tools with a unified API

News photo

How 2 high school teens raised a $500K seed round for their API startup (yes, it’s AI)

« How to waste bandwidth, battery power, and annoy sysadmins
Facial Recognition Led to Wrongful Arrests. So Detroit Is Making Changes. »