Latest news with #Grok-4
Tom's Guide
3 days ago
- Tom's Guide
A leaked xAI security key could put your data at risk — here's what happened
A federal government employee has reportedly leaked a sensitive API key linked to Elon Musk's xAI platform — and it could have serious implications for both national security and the future of AI development. According to a report from TechRadar, Marko Elez, a 25-year-old software developer with the Department of Government Efficiency (DOGE), accidentally uploaded xAI credentials to GitHub while working on a script titled That key granted access to at least 52 private large language models from xAI, including the latest version of Grok (grok‑4‑0709), a GPT-4-class model powering some of Musk's most advanced AI services. The exposed credentials remained active for a concerning period of time, raising major questions about access control, data security, and the growing use of AI across U.S. government systems. Elez had high-level clearance and access to sensitive databases used by agencies like the Department of Justice, Homeland Security and the Social Security Administration. If the xAI credentials were abused before being revoked, it could open the door to misuse of powerful language models, from scraping proprietary data to impersonating internal tools. This incident follows a string of DOGE-related security lapses and adds to a growing chorus of criticism over how the agency; formed under Elon Musk's influence to improve government efficiency, manages internal safeguards. Get instant access to breaking news, the hottest reviews, great deals and helpful tips. The leaked key was embedded in a GitHub repository owned by Elez and exposed publicly. It provided backend access to xAI's model suite, including Grok-4, without any apparent usage restrictions. Researchers who discovered the leak were able to confirm its validity before the repository was taken down, but not before it could have been scraped by others. The most recent Grok models are used not only for public-facing services like X (formerly Twitter) but also within Musk's federal contracts. This means the API leak may have inadvertently created a potential attack surface across both commercial and governmental systems. This is a warning sign that AI tools with enormous power are being handled casually, even those held by government insiders. Philippe Caturegli, CTO at cybersecurity firm Seralys, told TechRadar: 'If a developer can't keep an API key private, it raises questions about how they're handling far more sensitive government information behind closed doors.' Elez has been involved in previous DOGE controversies, including inappropriate social media behavior and apparent disregard for cybersecurity protocols. At the time of writing, xAI has not issued a statement, and the leaked API key has not been officially revoked, according to reports. So as of now, xAI hasn't disabled that key, making it a continuing security government officials and watchdogs are calling for stricter credential management policies and better oversight of tech collaborations involving high-stakes AI infrastructure. While this breach may not immediately affect the average user, it highlights a broader issue: the increasingly blurred lines between public and private AI development, and the very real need for transparency, accountability, and better data hygiene in both sectors. For now, the key takeaway is this: as AI systems become more powerful, the humans behind them must be even more careful. As we are already seeing, one careless upload could unlock a world of Tom's Guide on Google News to get our up-to-date news, how-tos, and reviews in your feeds. Make sure to click the Follow button.
Business Insider
10-07-2025
- Business
- Business Insider
Elon Musk's Grok-4 was asked to predict the World Series. After 4.5 minutes, it chose the Dodgers.
Grok-4 crunched the numbers and predicted a winner of the World Series. To the disappointment of San Francisco Giants fans, it thinks the Los Angeles Dodgers are in pole position. Sports betters rely on a variety of tools for their wagers. Betting sites like FanDuel and BetMGM have their own odds, as do predictions markets like Polymarket. Grok-4, the newest iteration of xAI's large language model, may be their next resource. During the launch of Grok-4 — just a day after its previous iteration, Grok-3, went on several antisemitic rants — Elon Musk and his xAI panel prompted the chatbot to calculate odds on the World Series. After an over four-minute wait, the model predicted both a likely winner and a high-value edge case. During the presentation, an xAI employee called Polymarket the "C-curve of truth" that "aligns with what reality is most of the time." They wanted Grok-4 to do the same. "We can try to take these markets and see if we can predict the future as well," he said. According to the demo, Grok-4 first gathered the current standing of each team and their market odds. It cited ESPN, Bleacher Nation, FOX, and BetMGM. Grok-4 then calculated its own odds based on FanGraph data. After comparing the internally calculated odds against the betting sites, it identified an Alpha and Edge. The Alpha — an excess return over the market — recognized the Dodgers as overvalued in Grok-4's calculations. The Edge — a bet with positive expected value — was given to the Mariners and Astros. Ultimately, Grok-4 found the Dodgers most likely to win, with a 21.6% chance. For a potentially higher return, Grok-4 recommended betting on the underpriced Mariners. Grok-4's predictions are not far off from the current odds on Polymarket, the popular betting site. The Dodgers also dominate there, with an even greater 28% odds. The Mariners only have 2% odds on Polymarket. To calculate these odds, Grok-4 needs to use its "Heavy" reasoning capabilities, which cost the user $300/month for early access. This means a response may take longer than traditional chatbot responses. During the demo, it took 4.5 minutes for Grok-4 to calculate the World Series odds. "That's a lot of thinking," Musk said. How confident is Grok-4 in its guess? It's just a prediction, as the chatbot's own disclaimer demonstrates: "Grok is not a financial advisor; please consult one."
