AI evaluation startup Braintrust confirms breach, tells every customer to rotate sensitive keys

Braintrust confirmed unauthorized access to an AWS account that contained customers' API keys, advised all customers to rotate any keys stored with the service, and said the compromised account has been locked down, internal secrets rotated, and access audited; one impacted customer was contacted and there is no evidence of wider exposure while the investigation continues.