OpenAI, the company behind the popular AI writer ChatGPT, has been accused of leaking more than 100,000 user accounts on the dark web. However, the company has hit back, stating that the breach was not its fault. A representative from OpenAI said that it maintains industry-best security practices and that the leak was the result of malware on people’s devices. The company urged its users to use strong passwords and install verified and trusted software on personal computers.
According to a report by cybersecurity firm Group-IB, the compromised credentials belonged to users who logged into ChatGPT between June 2022 and May 2023. The report also predicted that more user accounts may be leaked in the coming months.
The logs that contained the breached ChatGPT accounts also included lists of the domains visited and the IP addresses of the users. Most of the leaked credentials were found within logs that were compromised using info stealers, such as Racoon, which was responsible for stealing 78,348 accounts. Racoon is particularly harmful because it’s popular and easy to use, allowing threat actors to launch subsequent attacks automatically.
Access to the logs also enables bad actors to access conversation history with the ChatGPT chatbot. This could be especially dangerous if users are sharing trade secrets while using the chatbot at work.
In conclusion, OpenAI emphasizes the importance of using strong passwords and installing verified and trusted software on personal computers. As more and more personal data is being collected, it is crucial to protect it from malicious actors.
Frequently Asked Questions (FAQs) Related to the Above News
What is the incident that happened with OpenAI and ChatGPT?
OpenAI, the company behind ChatGPT, has been accused of leaking more than 100,000 user accounts on the dark web.
Who is responsible for the breach of ChatGPT accounts?
OpenAI denies being responsible for the breach and claims that it was caused by malware on people's devices.
What should ChatGPT users do to protect their accounts from future breaches?
OpenAI urges users to use strong passwords and install verified and trusted software on their personal computers.
Who discovered the compromised credentials belonging to ChatGPT users?
The report about the compromised credentials was prepared by cybersecurity firm Group-IB.
Which info stealer was responsible for stealing the most accounts on ChatGPT?
Racoon was responsible for stealing 78,348 accounts, making it the most damaging info stealer.
What information was found in the leaked ChatGPT logs?
The breached ChatGPT accounts were found within logs that contained information about the domains visited and the IP addresses of the users. Access to these logs also enables bad actors to access conversation history with the ChatGPT chatbot.
Why is it crucial to protect personal data from malicious actors?
As more and more personal data is collected, it becomes increasingly important to protect it from malicious actors who could use it for nefarious purposes.
Please note that the FAQs provided on this page are based on the news article published. While we strive to provide accurate and up-to-date information, it is always recommended to consult relevant authorities or professionals before making any decisions or taking action based on the FAQs or the news article.
