How a Google API Key Became an $8,000 AI Bill, Meta Scam Ads Lawsuit, and 73-Second Cyber Attacks

Google Cloud customers are reporting shocking surprise bills after compromised or misused API keys were allegedly used to access expensive Gemini AI services. In one case, Rod Dinan says his monthly Google Cloud costs jumped from under $50 to nearly $8,000. Sydney developer Isuru Fonseka says he was hit despite setting spending controls, raising broader questions about API key security, client-side exposure, billing alerts, and how quickly attackers can exploit AI infrastructure.

Cybersecurity Today also covers prosecutors' allegations that two fired brothers sabotaged systems tied to government-related work after access wasn't revoked quickly enough, Santa Clara County's civil lawsuit accusing Meta of profiting from scam ads on Facebook and Instagram, and Horizon3.ai's warning that attackers can exploit newly exposed systems in as little as 73 seconds while many organisations still take 24 hours or longer to respond.

If your organisation uses APIs, AI services, cloud billing controls, or internet-facing infrastructure, this episode matters.

#Cybersecurity #GoogleCloud #GeminiAI #APIKeys #CloudSecurity #Meta #ScamAds #CyberAttack #CybersecurityToday #AIsecurity

CHAPTERS

00:00 Google Cloud API Key Bill Shock
01:20 Real-World Victims: Surprise AI Charges
02:24 Why Spending Caps Didn't Stop the Damage
03:38 The Enterprise Cloud Security Risk
04:19 Fired Employees and Alleged Insider Sabotage
04:55 The Database Destruction Timeline
06:34 What This Incident Teaches Security Teams
07:10 Santa Clara County Sues Meta Over Scam Ads
08:46 Attackers Can Strike in 73 Seconds
10:14 Closing and Next Episode