"OpenAI has ended its use of analytics provider Mixpanel after a security incident in which API user data was exported. The incident took place within Mixpanel's systems and did not affect ChatGPT users. On November 9, Mixpanel discovered that an attacker had gained unauthorized access to parts of its systems. The attacker exported a dataset containing limited customer identification data and analytics data. Mixpanel informed OpenAI about the investigation and shared the affected dataset on November 25."
"The exported Mixpanel data included user profile information linked to use of platform.openai.com. This includes names provided to the API account, email addresses associated with the API account, estimated location based on API users' browsers (city, state, country), operating system and browser used to access the API account, referring websites, and organization or user IDs associated with the API account."
Mixpanel discovered on November 9 that an attacker had gained unauthorized access to parts of its systems and exported a dataset containing limited customer identification and analytics data. The exported dataset included user profile information tied to platform.openai.com accounts: names, API account email addresses, estimated browser-based locations (city, state, country), operating system and browser, referring websites, and organization or user IDs. OpenAI's own systems were not affected and sensitive items such as chat content, API calls, usage data, passwords, credentials, API keys, payment information, and government IDs were not exposed. OpenAI removed Mixpanel from production, is reviewing datasets, notified affected parties, and warned users about phishing risks.
Read at Techzine Global
Unable to calculate read time
Collection
[
|
...
]