Connect with us

Hi, what are you looking for?

CrazyFlux.comCrazyFlux.com

Tech News

A group of R1 jailbreakers found a massive security flaw in Rabbit’s code

A photo of the Rabbit R1.
Researchers say Rabbit left secure data vulnerable to bad actors. | Photo: David Pierce / The Verge

Rabbit and its R1 AI gadget are under fire again, and it’s much more serious than the time we found out its launcher really could just be installed as an Android app. A group of developers and researchers called Rabbitude says it discovered API keys hardcoded in the company’s codebase, putting sensitive information at risk of falling into the wrong hands.

These keys essentially provided access to Rabbit’s accounts with third-party services like its text-to-speech provider ElevenLabs and — as confirmed by 404 Media — the company’s SendGrid account, which is how it sends emails from its rabbit.tech domain. According to Rabbitude, its access to these API keys — particularly the ElevenLabs API — meant it could access every response ever…

Continue reading…

You May Also Like

Tech News

The new Discord integration on PS5. | Image: Sony Sony is improving its Discord integration on the PS5 so that you can join voice...

Editor's Pick

On this week’s edition of Stock Talk with Joe Rabil, Joe shows the five ways to use the Moving Average lines to help with...

Editor's Pick

Walter Olson In today’s Harrington v. Purdue Pharma, the Supreme Court confronted a recurring issue in the context of mass legal settlements: Should the courts...

Tech News

Image: Laura Normand / The Verge Elon Musk had a sexual relationship with a former SpaceX intern, who he later hired onto his executive...