Deutsche Telekom Is Rebuilding Itself as an AI-Native Company Using OpenAI
Germany's largest telecom is overhauling customer service, networks, and internal workflows with OpenAI models in a full-stack transformation.
A new report from Codacy, surfaced by Hacker News, found that a scan of 34,266 public and private repositories turned up exposed credentials, API keys, and system prompts in AI agent configuration files at one in four organizations. The failure rate would be alarming in any security audit; it is particularly dangerous when those agents have autonomous access to databases and production systems.
The pattern is familiar: rapid deployment outpaces security hygiene. Developers are treating agent configuration files the same way early engineers treated .env files a decade ago — as an implementation detail rather than an attack surface. The difference now is the blast radius. An agent with a leaked API key and database access is not just a data exposure; it is an autonomous actor that can be commandeered by an attacker.
Codacy did not publish a list of affected organizations, but a one-in-four rate across 34,266 repos is systemic, not an edge case. Any security team that has not audited its AI agent configurations should treat that as the highest-priority item on the backlog — before the next automated deployment.
All comments are reviewed before appearing. Keep it respectful.
Germany's largest telecom is overhauling customer service, networks, and internal workflows with OpenAI models in a full-stack transformation.
Researchers at EPFL created AI-generated videos optimized not for aesthetics but for neurological effect, raising immediate questions about manipulation.
Meta starts manufacturing its own AI chip next month, co-designed with Broadcom and built by TSMC, after clearing validation in just six weeks.