In my project I’m seeing 4o usage daily when it hasn’t been used in any of my projects.
For example today:
7 requests to 4o
87.44K tokens
$0.41 Spend
All API tokens were showing last use as yesterday.. so couldn’t be a secret key leak.
Most confusing thing is - even today - User, Services, API Keys sections in billing dashboard actually show no usage, yet somehow being charged 4o usage from ‘somewhere’
Deleted all my keys and regenerated to see if issue persists, but it would be really nice to see raw recent request logs or download them because nothing on my side is using this level of tokens. Is this possible anywhere in the platform, raw logs?
I disabled all models except 4.1 with the new key, which should solve the issue but I want to get to the bottom of this.
My only possible theory is an old hosted Vercel test chatbot project url got leaked.
UPDATE:
Vercel test chatbot leak looking more likely to be issue now, it was created some time ago with a legacy ‘User API key’ which don’t seem to be showing up in reporting. Have disabled so let’s see where it goes from here. Let this be a warning to anyone who’s spun up a test chatbot on Vercel or similar service, imagine attackers are just finding the url pattern via search engines