Google AI Studio API key compromised ~₹8.3 lakh in Gemini 3 Pro Image charges in less than 2 hours, days after a suspension and reinstatement. Support is investigating, looking for advice from anyone who has been through this 🙏

Billing Usage_.PNG1920×1247 248 KB

Hi all,

I’m posting here because I’m in the middle of a confusing and stressful billing situation, my support case is open and Google is investigating, and I’m hoping people in this community who have been through something similar can share what they’ve learned. I’ll lay out the timeline as clearly as I can.

April 30, around 11pm IST. I received an email from google-cloud-compliance@google.com titled “Immediate action required: Your project is being suspended.” The body stated that my project was “engaged in abusive activity consistent with hijacked resources.”

Looking at the dashboard, my April 30 spend was around ₹28K - higher than usual, but I had been actively using the API that day on my project. Realistically my usage that day should have come out closer to ₹15K or below, so the gap was a bit more than I’d expected, but not so far off that I immediately suspected something external. I assumed I had unoptimized loops or something I could explain, and submitted an appeal on May 1 in good faith describing my heavy usage that day.

My account was reinstated soon. I was relieved and assumed everything was fine, maybe the suspension had been a false positive triggered by my elevated usage. I did not rotate keys at this point, partly because I assumed if anything had genuinely been compromised, the reinstatement flow would have flagged that or required key rotation. In hindsight, I wish I had rotated everything proactively. That’s one of the things I’d want other developers reading this to take away.

May 4. At EOD, I opened the billing dashboard and saw ₹8,31,807.77 accumulated in roughly a 2-hour window on that day itself. The Cost Anomaly dashboard captured it as:

• Actual cost: ₹831.8K
• Expected cost: ₹2.92K
• Deviation: >1000%
• Top contributor SKU: Generate_content image output token count for Gemini 3 Pro Image — ₹445.7K actual vs ₹1.77K expected on that single SKU
• Region: global

I deleted my API keys immediately to stop further charges. In retrospect I should have grabbed request-level logs first, but I panicked. I’ve asked support for the audit trail since Google has the logs on their side.

I opened a billing chat with Google Cloud Support. The agent confirmed the ₹8.3 lakh charge from my account, and then mentioned that “a lot of users are seeing a spike in the usage for the Gemini API services” and that an internal team is working on the issue. She told me my case is now under investigation and that I’ll receive an update by email. I appreciate that the case has been logged and is being looked at, and I want to give the investigation a fair chance to run.

In parallel, I’ve taken a few protective steps on my side: I blocked the credit card to prevent any pending charges from settling while the investigation runs (separately, around ₹1.5 lakh from earlier had already settled on the card before I blocked it). I’m also planning to file an FIR with the cyber crime cell, given that this is documented unauthorized access with substantial financial loss and the FIR creates a parallel legal record while the platform-side investigation is ongoing. I want to be clear that I don’t see these as adversarial steps against Google — they’re just necessary self-protection while the case works through the system, and I think most developers in this situation would do the same.

Why I’m posting here

I’ve been reading similar threads on this forum from the last 2–3 weeks and noticing what looks like a pattern — unauthorized Gemini API charges, sometimes via Firebase-provisioned keys, sometimes after a suspension/appeal/reinstatement sequence, often with the Gemini 3 Pro Image SKU as the major contributor. The support agent’s note that this is affecting many users matches what the forum is showing.

I’d genuinely value input from this community on a few things:

1. Has anyone been through this kind of charge dispute and gotten a refund? I’d love to hear what worked — what evidence helped, how long it took, whether escalation past first-line support was necessary.
2. For anyone who went through a suspend → appeal → reinstate sequence and then saw a second incident: what did you do differently the second time? Should I have rotated keys after reinstatement even without being asked to? It feels obvious in hindsight but I don’t think it’s documented anywhere.
3. For Indian developers specifically: has anyone here filed an FIR for an API key abuse case? Any advice on how to frame it, which sections to cite, whether the cyber crime cell engages meaningfully with platform-side cases?
4. For Google staff who monitor this forum: is there any guidance on the right escalation path for cases of this size? I’m currently working through the standard billing support flow but I’d appreciate any pointer on whether there’s a more appropriate channel for charges in this range.
5. More general: is there anything I should be doing right now that I’m not? I want to make sure I’m handling this responsibly while the investigation runs.

If this thread can also help other developers understand the ways API keys can be abused on this scale, and the protective steps to take (key restrictions, hard budget caps via the Cloud Billing API rather than just budget alerts, key rotation after any suspicious-activity flag) — that would be a positive outcome too.

Evidence on hand

I have screenshots of: the April 30 suspension email, the May 1 appeal-received confirmation, the Cost Anomaly dashboard with the SKU-level breakdown, and the support chat. Happy to share with Google staff or with anyone in the community trying to triangulate the pattern (with my account identifiers redacted).

Thank you to anyone who reads this and shares advice or experience. I’ll update this thread as the case develops.

Hi @Piyush_Agarwal
I have Dm’ed you

Hello,

i got the same issue can you help me @Mustan_lokhand as it seems an issue form the Google Studio platform itself .

I am also having the same issue with API key @Mustan_lokhand can you please help

@Francesco_Vezzani and @CricInclusive can you DM me case ID and project Ids

Hi @Mustan_lokhand I have no option to DM here, can you give me an email or contact? I can send you also a linkedin request and DM there.

I am also facing a very similar issue.

In my case, the billing suddenly spiked to approximately ₹14 lakh during the night of May 4th within a short period, and Google had proactively created an ACCOUNT_HIJACKED / suspicious activity case on my project.

Some observations from my investigation:

• My application is text-chat based only
• A major portion of billing came from Gemini 3.0 Pro Image and Gemini 3.1 Flash Image models, which my app does not use

I revoked and deleted the affected API keys immediately after receiving the Google notification, and the billing stopped shortly afterward.

Support informed me that multiple customers are currently seeing similar unexpected Gemini API billing spikes and that internal teams are investigating.

Currently waiting for the billing/security review outcome.

I also faced the same issue, I had my webapp in firebase studio. 16 lakhs in Gemini 3 pro image charges in less than a hour. I dont even use Image model in my app

Hi all,
same happened to me 2 days ago (6th May 26), in one hours something like 65k api calls to gemini services when we usually only make some.

@Mustan_lokhand can you please help?

We have a support case but I want to understand if it’s an issue on AI Studio side in general and if can happen again.

thanks

Same issue here, over £1.6k in charges in 1 day very suddenly. I just got an email saying the key is compromised. I have made a support ticket… Hopefully this means they’ll wipe it for all of us as it’s not an individual’s mistake.

Hi

If you experienced something similar, please DM me your case ID and what issue you faced

Hi, dming you. 11L in 6 hours of unauthorized activity. 90% usage was gemini-short-text model. Daily use is around 3K so this was a 300-350x spike of usual. Google support said billing is investigating but the rising number of cases on Google Cloud, especially just in this month itself, is getting out of hand.

@Mustan_lokhand how do I dm you?

@Shekhar_Chatterjee DM’ed you

Opened up my billing page for GCP after my bank got in touch with me and found out that I had been charged for $6,486.81.

image1631×723 133 KB

I keep the account associated with GCP insanely low b/c I have always worried about this nightmare scenario. I wasted so many hours setting up alerts and budgets that i think i am done with cloud services and development in general.
Now I have to look forward with resolving issues with bank and GCP billing. I have a google case support ticket open so I guess its a start. Here is how i spent my evening researching this issue.

Prompt "Research questions — please answer each with sources:

1. Prevalence: Search Google Cloud Community forums, Reddit (r/googlecloud, r/Bard, r/GeminiAI), Hacker News, Twitter/X, and GitHub Issues for reports of unexpected Gemini API billing spikes in April–May 2026. Are others reporting the same pattern? Compile a list with dates, amounts, and links.
2. Stolen-key resale botnets: Find documentation of the broader pattern where attackers harvest leaked LLM API keys (OpenAI, Anthropic, Google) and burn them in 24-hour bursts via image-generation endpoints. What are the known exfiltration vectors (AI Studio session compromise, browser extensions, copy-paste into third-party tools, Colab notebooks, marketplace bundles)?
3. Google AI Studio key exposure: Are there documented cases where keys created via AI Studio (aistudio.google.com) leaked through the AI Studio UI itself, browser extensions, or Google’s own telemetry? Has Google acknowledged any such vector?
4. Gemini 3 Pro Image / Gemini 3.1 Flash Image launch: When did these models go GA? Was there any auto-enrollment, free-tier-to-paid transition, billing-tier change, or default-quota change that hit existing API keys around the launch date? Check Google’s release notes, the Gemini API changelog, and the Vertex AI release notes.
5. Google’s refund track record for this scenario: Search for first-person accounts of users who got refunds (full or partial) for Gemini / Vertex API abuse charges. What worked? What arguments did Google accept or reject? Specifically look for cases involving (a) keys never published publicly, (b) absence of Data Access logs, (c) IP-restriction-added-after-the-fact mitigations.
6. The Data Access logging default-off issue: Find any public commentary — blogs, GCP community posts, security researcher writeups — about Google leaving Data Access logging off by default for generativelanguage.googleapis.com, and how that affects customer ability to investigate abuse. Is this a known structural complaint?
7. Class action or pattern recognition: Has any consumer-protection org, security researcher, or journalist written about a wave of Gemini billing incidents tied to a specific exfiltration source or Google-side policy change?
   Output format: Structured markdown report. For each question, a short answer + bulleted evidence with full URLs. Note where you found nothing — absence of reports is itself useful data."
   That is how i found this forum and question.