ChatGPT Hacked: Names, Email Addresses Revealed; AI Chatbot Responds to Users
ChatGPT Hacked Users of OpenAI, take note! Limited API user data, such as names and emails, was exposed due to a security breach at analytics company Mixpanel. OpenAI has severed its relationship with Mixpanel and is informing anyone impacted, even though no private data, such as passwords or payment information, was exposed. Users are advised to strengthen account security and keep an eye out for phishing efforts.
Following a security problem at its third-party data analytics supplier, Mixpanel, OpenAI has alerted its users to the possibility that limited analytics data linked to some of its API product users may have been exposed. The company verified in a blog post that the incident happened within Mixpanel’s environment and did not involve a compromise of OpenAI’s or ChatGPT users’ systems.
Earlier this month, an attacker exported a dataset after gaining unauthorized access to Mixpanel’s systems. On November 25, OpenAI was informed and got the impacted data. The business reiterated that the exposed data was restricted to non-sensitive user profile information and was solely connected to accounts using the API offering. This data might have contained:
- Name provided on the API account
- Email address associated with the API account
- Approximate location (city, state, country)
- Operating system and browser used
- Referring websites and Organisation/User IDs
The business did point out that OpenAI has subsequently eliminated Mixpanel from its production services and is currently personally informing all affected organizations, administrators, and users. The business emphasizes that no private information was compromised, including chat logs, passwords, API keys, payment information, or government IDs.
“Trust, security, and privacy are foundational to our products, our organization, and our mission,” stated OpenAI in a blog post. As part of our commitment to openness, we are informing all affected users and customers. Additionally, we demand the greatest standards of security and privacy from our vendors and partners.
OpenAI has stopped using Mixpanel after looking into this situation. Beyond Mixpanel, we are raising security standards for all partners and vendors and carrying out more thorough security evaluations throughout our vendor ecosystem.
ChatGPT Hacked; OpenAI’s Security Advice to Affected Users
Users were informed by the company that they could be targeted by phishing or social engineering attempts using the information implicated in this issue.
Users have been warned to be on the lookout for messages that seem authentic but could be fraudulent because names, email addresses, and OpenAI API data (such as user IDs) were included. They’ve been told to:
- When you receive unusual emails or messages, especially ones with attachments or links, exercise caution.
- Make sure that any message purporting to be from OpenAI originates from an official OpenAI domain.
- Be aware that OpenAI does not request verification codes, passwords, or API keys over chat, text, or email.
- Turn on multi-factor authentication to increase account security.
About The Author:
Yogesh Naager is a content marketer who specializes in the cybersecurity and B2B space. Besides writing for the News4Hackers blogs, he also writes for brands including Craw Security, Bytecode Security, and NASSCOM.
Read More:
Amazon Alerts 300 Million Users to Complex Holiday Fraud Efforts
About Author
English