"As part of our security investigation, we removed Mixpanel from our production services, reviewed the affected datasets, and are working closely with Mixpanel and other partners to fully understand the incident and its scope. We are in the process of notifying impacted organizations, admins, and users directly. While we have found no evidence of any effect on systems or data outside Mixpanel's environment, we continue to monitor closely for any signs of misuse."
"While we have found no evidence of any effect on systems or data outside Mixpanel's environment, we continue to monitor closely for any signs of misuse. Trust, security, and privacy are foundational to our products, our organization, and our mission. We are committed to transparency, and are notifying all impacted customers and users. We also hold our partners and vendors accountable for the highest bar for security and privacy of their services. After reviewing this incident, OpenAI has terminated its use of Mixpanel."
Mixpanel detected a data breach on November 9 and shared the dataset with OpenAI on November 25. The exposed data pertains to profile information for OpenAI platform accounts, including names, email addresses, approximate locations, operating system and browser details, referring websites, and organization or user IDs. Only users of OpenAI's platform (API developers) are affected; typical ChatGPT users are unaffected unless they also use the API. OpenAI removed Mixpanel from production, terminated its use, is conducting broader vendor security reviews, is notifying impacted organizations and users directly, and is monitoring for potential misuse while warning about phishing. OpenAI did not disclose the number of affected users.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]