Hosted on MSN

Chrome extension disguised as AI assistant expose 10K+ users OpenAI API keys

A Chrome browser extension posing as an artificial intelligence assistant is siphoning OpenAI credentials from more than 10,000 users and sending them to third-party servers. Cybersecurity platform ...
Hosted on MSN

Microsoft warns a key OpenAI API is being exploited to launch cyberattacks

SesameOp malware uses OpenAI’s Assistants API as a covert command-and-control channel It enables persistent access, runs commands, and exfiltrates data via encrypted API traffic Microsoft urges ...
ZDNet

OpenAI user data was breached, but changing your password won't help - here's why

Some OpenAI customer data was exfiltrated in a supply chain attack. The attack only affected visitors to OpenAI's API documentation. The damage was minimal yet noteworthy. A supply chain attack occurs ...
Bleeping Computer

OpenAI discloses API customer data breach via Mixpanel vendor hack

OpenAI is notifying some ChatGPT API customers that limited identifying information was exposed following a breach at its third-party analytics provider Mixpanel. Mixpanel offers event analytics that ...