‘Although this breach is yet to be verified by OpenAI, anyone using the tool should update their passwords and credentials, as a precaution’
OpenAI has addressed concerns over reports of a data breach, asserting the gravity with which it views such reports whilst confirming that there’s no evidence so far of a system compromise.
Reports on Friday said a hacker claimed to have obtained log-in details for 20 million OpenAI accounts, alleging access to sensitive information like passwords and email addresses. The claim surfaced on a hacking forum, where the actor exhibited supposed proof of the stolen data and offered to sell the full batch.
Despite the lack of verification regarding these allegations, OpenAI has acknowledged the issue, stating in a company release: “We take these claims seriously. We have not seen any evidence that this is connected to a compromise of OpenAI systems to date.”
The AI firm is the maker of ChatGPT, the AI chatbot which has exploded in popularity since its original launch in late 2022. Jamie Akhtar, a cyber security expert and CEO-co-founder of CyberSmart, said users should renew their passwords and credentials. He cautions about criminals seeking to exploit the situation.
Mr Akhtar said: “If verified, this breach could have huge ramifications, both for OpenAI and its customers. Millions of people and businesses have embraced the company’s technology into their daily lives, so the potential damage to OpenAI’s reputation for data security could be huge.
“Worse still, compromised accounts could be used to access and abuse sensitive customer data or to exploit OpenAI’s APIs and distribute malware and other cyber nasties. There’s also the possibility of cybercriminals using stolen user credentials to produce targeted phishing campaigns, steal identities, or commit financial fraud.”
“Although this breach is yet to be verified by OpenAI, anyone using the tool should update their passwords and credentials, as a precaution. And, if you haven’t already, switch on multi-factor authentication within OpenAI’s settings, as this should give you another layer of protection even if your password has been compromised.”
