Google and Anthropic: this is a SEV0.
Assemble your teams and immediately do the following:
1. Issue a public statement that you are aware of this issue and are tracking it
2. Begin monitoring your analytics to see which customers are impacted and shut down their access
3. Reach out to impacted customers and let them know you'll be preparing a list of next steps for them.
4. Monitor for a wider blast radius or larger attack surface area
5. Notify internal teams of broader security efforts as a result of this
6. After this cools down, hold internal and public postmortems.
Do this now.
Edit: -4 and flagged. I give up.
replies(4):