AI Privacy IncidentMay 4, 2026

Braintrust AWS account compromise and customer API key rotation

Vendor: Braintrust
Product: Braintrust
Severity: medium
Status: ongoing
Users affected: undisclosed; rotation requested for all customers with stored keys

Summary

On May 5, 2026, Braintrust, an AI evaluation and observability platform, posted a website notice disclosing unauthorized access to one of its AWS accounts that held customer API keys for cloud-based model providers. The company emailed every customer the next day asking them to rotate any keys stored with the platform. Braintrust told TechCrunch it had identified one directly impacted customer and that the wider notice was sent out of caution while the investigation continues.

What happened

  • Braintrust observed suspicious activity in one of its AWS cloud accounts on May 4, 2026, and confirmed unauthorized access shortly afterward.
  • The affected account held customer API keys that the platform used to call third-party AI model providers on customers' behalf.
  • Braintrust said it locked down the account, audited and restricted access on related systems, and rotated its internal secrets.
  • On May 6, 2026, the company emailed all customers asking them to rotate any keys stored with the platform.

Timeline

  • 2026-05-04 - Braintrust observes suspicious activity in an AWS account and begins investigation.
  • 2026-05-05 - Braintrust posts a website notification confirming an incident.
  • 2026-05-06 - Braintrust emails customers requesting key rotation; TechCrunch and other outlets publish accounts of the disclosure.

What the vendor has confirmed

Braintrust spokesperson Martin Bergman told TechCrunch the company had "confirmed a security incident" and that the customer notice was sent "out of an abundance of caution." Braintrust said the incident had been contained and the cause was still under investigation. The company stated that as of disclosure it had identified one directly impacted customer and had no evidence of broader exposure.

What remains unclear

  • The root cause and the duration of the unauthorized access have not been disclosed.
  • Braintrust has not published the count of customers whose keys were stored in the affected account.
  • Whether the exposed keys were used against the third-party model providers they unlocked has not been disclosed.

Broader context

API keys held by AI middleware platforms fan out to every model and tooling vendor those keys unlock, so a single account compromise at the orchestrator can hand an attacker downstream access to multiple services without separately reaching each one. This concentration of credentials in evaluation, monitoring, and routing layers has been a recurring concern as the AI tooling stack has grown.

Sources

Selvam Sivakumar
Written by

Selvam Sivakumar

Founder, Elephas.app

Selvam Sivakumar is the founder of Elephas and an expert in AI, Mac apps, and productivity tools. He writes about practical ways professionals can use AI to work smarter while keeping their data private.

LinkedInFollow

Related Resources

news

Starlink Updated Its Privacy Policy on January 15. If You Don't Opt Out, Your Data Trains AI.

On January 15, 2026, SpaceX updated the Starlink Global Privacy Policy to allow customer data, including audio, video, and shared files, to be used for AI training. A breakdown of what changed, who's affected, and what to do today.

9 min readnews

Vercel Got Hacked: The April 2026 Breach Tied to a Context AI Misstep

A Vercel employee's OAuth grant to Context.ai became the entry point for a breach listed on a cybercriminal forum for $2 million. The full attack chain, IOCs, and what to rotate now.

10 min readnews

Lovable Hacked: API Flaw Exposes Thousands of Projects on the Lovable AI App Builder

A security researcher exposed a Lovable API flaw that leaked source code, AI chat histories and database credentials across thousands of projects. Lovable denies data was breached; its apology reveals a February 2026 backend regression.

13 min readnews

ChatGPT Launches Ads as Privacy Researcher Resigns from OpenAI

A growing wave of AI safety researchers are leaving major companies as ChatGPT goes ad-supported.

6 min read