Security & Riskgoogle cloudapi keyscloud billinginference costs

Cloud Customers Hit with Surprise AI Inference Bills

|May 17, 2026

7.0

Relevance Score

Cloud Customers Hit with Surprise AI Inference Bills — Photo: image.theregister.com · rights & takedowns

Several cloud customers reported unexpectedly large invoices after API keys were used to run AI inference on expensive models, The Register reports. The Register published multiple accounts in May 2026 of Google Cloud users incurring tens of thousands of dollars in charges after compromised API keys were abused to call Nano Banana and Veo 3 models. The Register's coverage says Google told the outlet it treats this as an industry-wide problem and attributes many incidents to leaked credentials; The Register also reported that Google reimbursed two on-the-record sources after publication. The reporting notes a Google policy that can automatically raise spending caps to $100,000 if an account has spent $1,000 over its lifetime, a factor users say complicated mitigation and refunds. The Register's Kettle podcast discussed related incidents involving Google and AWS, according to the episode transcript.

What happened

The Register published multiple stories in May 2026 documenting cloud customers who were billed unexpectedly large amounts after API keys were used to run AI inference on costly models. The Register reported that affected Google Cloud customers saw tens of thousands of dollars in charges linked to unauthorized calls to Nano Banana and Veo 3 (The Register, May 12 and May 17, 2026). The Register updated one story to say Google reimbursed the two on-the-record sources cited in the article (The Register, May 12, 2026).

Technical details

The Register quotes Google saying many incidents stem from compromised credentials such as API keys exposed in public code repositories and from malicious actors scraping those repositories (The Register, May 12, 2026). Reporting also highlights a Google policy detail: spending caps set by users can be automatically expanded to $100,000 if an account has accumulated $1,000 in lifetime spend and is older than one month, per The Register's coverage (The Register, May 12, 2026).

Editorial analysis - technical context

Cloud API keys are common secrets that, when leaked, enable third parties to make authenticated calls that incur billable usage. Industry-pattern observations: developers frequently embed keys in client-side code or public repos for convenience, and automated scraping tools can discover and reuse those keys at scale. For practitioners, this combination of leaked credentials and high-cost inference endpoints raises both security and cost-control challenges, especially where billing protections can be elevated by provider-side policies.

Context and significance

Similar reports of unauthorized cloud-billing incidents have circulated across major providers, and The Register frames these incidents as part of a broader pattern of API-credential abuse exacerbated by expensive inference pricing. The Register's Kettle podcast episode also discussed a parallel incident involving AWS, indicating the problem is not limited to a single cloud vendor (The Register, May 17, 2026).

What to watch

Signals observers and practitioners should monitor include provider responses to disputed charges, transparency around automatic spending-cap adjustments, the prevalence of credential leaks on public repositories, and vendor tooling for key auditing and automated revocation. Watch for follow-up reporting from affected customers and any changes to billing or API-key management policies announced by cloud vendors.

Scoring Rationale

The story affects cloud security and operational risk for AI deployments; unexpected high bills from inference abuse are directly relevant to practitioners managing keys, budgets, and incident response. The coverage is notable but not paradigm-shifting.