xAI's Private LLMs Exposed: Two-Month Security Flaw
2025-05-02
An xAI employee leaked a private key on GitHub, granting access for two months to private xAI large language models (LLMs) seemingly tailored for internal data from SpaceX, Tesla, and X (Twitter). Security firm GitGuardian discovered the key allowed access to at least 60 fine-tuned, private LLMs, some trained on SpaceX and Tesla data. Despite GitGuardian alerting the employee two months prior, xAI only recently removed the repository containing the key. This highlights xAI's security vulnerabilities in key management and internal monitoring, raising concerns about data security.
Tech
AI security flaw