"The ChatGPT maker said on Thursday that a security breach earlier this month at Mixpanel, a web analytics platform, may have included profile information for users of OpenAI's developer platform. OpenAI said the data affected could include "limited analytics data" such as names, email addresses, and approximate location for some API users. The company said that OpenAI's systems had not been breached and that users of ChatGPT were unaffected, adding that passwords, payment details, and chat or API requests had not been compromised."
"However, OpenAI said that the leaked data could be used to target developers with phishing attacks, and warned them to "treat unexpected emails or messages with caution." Jake Moore, global cybersecurity advisor for internet security firm ESET, told Business Insider that while the exposed data was of "low sensitivity," it could be combined to "craft convincing fraudulent messages." Smishing attacks use fake text messages to trick targets into revealing personal information or downloading malware."
Mixpanel experienced a security breach originating from a smishing attack detected on November 8, which may have exposed profile information for some OpenAI developer platform users. The exposed analytics data potentially included names, email addresses, and approximate locations for certain API users. OpenAI's systems were not breached, and ChatGPT users, passwords, payment details, and chat or API requests were not compromised. The leaked information could be used to craft targeted phishing attacks against developers. Security advisors noted the data's low sensitivity but warned it can enable convincing fraud. Mixpanel notified affected customers and engaged law enforcement.
Read at Business Insider
Unable to calculate read time
Collection
[
|
...
]