A hacker said they purloined personal details from countless OpenAI accounts-but scientists are doubtful, and hb9lc.org the business is investigating.
OpenAI states it's investigating after a hacker claimed to have actually swiped login credentials for gratisafhalen.be 20 countless the AI firm's user accounts-and put them up for sale on a dark web online forum.
The pseudonymous breacher published a cryptic message in Russian marketing "more than 20 million gain access to codes to OpenAI accounts," calling it "a goldmine" and providing prospective purchasers what they claimed was sample data containing email addresses and passwords. As reported by Gbhackers, disgaeawiki.info the full dataset was being marketed "for just a couple of dollars."
"I have over 20 million gain access to codes for OpenAI accounts," emirking composed Thursday, according to a translated screenshot. "If you're interested, reach out-this is a goldmine, and Jesus concurs."
If genuine, macphersonwiki.mywikis.wiki this would be the third significant security incident for the AI company given that the release of ChatGPT to the public. Last year, a hacker got access to the company's internal Slack messaging system. According to The New York City Times, the hacker "took details about the design of the business's A.I. technologies."
Before that, in 2023 an even easier bug including jailbreaking triggers enabled hackers to obtain the personal information of OpenAI's paying clients.
This time, however, security researchers aren't even sure a hack occurred. Daily Dot press reporter Mikael Thalan composed on X that he discovered invalid email addresses in the expected sample information: "No evidence (suggests) this alleged OpenAI breach is legitimate. A minimum of two addresses were void. The user's only other post on the online forum is for a stealer log. Thread has actually given that been erased also."
No proof this supposed OpenAI breach is legitimate.
Contacted every email address from the purported sample of login credentials.
At least 2 addresses were void. The user's only other post on the forum is for a stealer log. Thread has because been deleted also. https://t.co/yKpmxKQhsP
- Mikael Thalen (@MikaelThalen) February 6, 2025
OpenAI takes it 'seriously'
In a statement shared with Decrypt, an OpenAI spokesperson acknowledged the scenario while maintaining that the company's systems appeared secure.
"We take these claims seriously," the representative said, including: "We have actually not seen any proof that this is linked to a compromise of OpenAI systems to date."
The scope of the alleged breach triggered concerns due to OpenAI's enormous user base. Millions of users worldwide count on the business's tools like ChatGPT for service operations, educational functions, and content generation. A genuine breach could expose personal discussions, industrial jobs, and other delicate data.
Until there's a last report, some preventive procedures are always suggested:
- Go to the "Configurations" tab, systemcheck-wiki.de log out from all connected devices, and enable two-factor authentication or links.gtanet.com.br 2FA. This makes it virtually difficult for a hacker to gain access to the account, even if the login and passwords are jeopardized.
- If your bank supports it, then develop a virtual card number to manage OpenAI memberships. This way, it is much easier to find and avoid fraud.
- Always watch on the discussions saved in the chatbot's memory, and know any phishing attempts. OpenAI does not ask for any personal details, and any payment update is constantly managed through the main OpenAI.com link.
