A cybersecurity firm, Group-IB, has detected a significant breach in the popular chatbot, ChatGPT. Over 100K ChatGPT accounts have been compromised, with the Asia-Pacific region bearing the brunt of the attack. Reports indicate that data obtained from logs of information-stealing malware from the dark web showed that 101,134 infected devices exploited ChatGPT credentials.
The ChatGPT bot, which sees heavy usage in software development and business communications, retains user interaction records. Therefore, unauthorized access to ChatGPT can expose confidential information, making it a popular target for malicious entities. Group-IB Threat Intelligence platform, renowned for its extensive dark web data library, is helping organizations monitor illicit online spaces, uncovering compromised credentials, stolen credit cards, malware samples, as well as network access. These findings provide businesses with the necessary tools to manage cybersecurity risks.
Raccoon info stealer is the primary culprit in most ChatGPT account breaches. These malware types gather information such as browser credentials, bank information, browsing history, and other data types. They seek to infect as many computers as possible, often via phishing methods, to collect data on personal information that they can trade on the dark web. Reports show that ChatGPT account breaches peaked at 26,802 in May 2023, signalling cybercriminals’ growing interest in the AI chatbot.
Notably, the Asia-Pacific region recorded the highest number of ChatGPT account breaches. Between June 2022 and May 2023, 40.5% of total infected devices holding ChatGPT credentials were located in this region. It is suspected that the high usage of ChatGPT in this region makes it a prime target for malicious entities.
The prevalence of these malware types underscores the need for cybersecurity measures to protect sensitive data. Businesses must take proactive measures to protect confidential client and employee information. Group-IB’s findings indicate that cybersecurity risks are becoming increasingly significant. It underscores the importance of cybersecurity measures for businesses to protect users’ sensitive information.
