Over 225,000 OpenAI ChatGPT Accounts Compromised in Malware Breach
In a significant cybersecurity incident, over 225,000 OpenAI ChatGPT account credentials have been compromised and are now available for purchase on underground markets. The breach, which occurred between January and October 2023, was primarily facilitated through information-stealing malware such as LummaC2, Raccoon, and RedLine.
The Asia-Pacific region has been disproportionately affected, accounting for 40.5% of the compromised credentials. Notably, India tops the list with 12,632 stolen credentials, followed by countries like Pakistan, Brazil, Vietnam, and Egypt.
OpenAI has clarified that this breach was not due to vulnerabilities within their infrastructure but resulted from malware infections on users’ devices. These malicious programs harvested login information, which was subsequently sold on dark web platforms. An OpenAI spokesperson emphasized the importance of users employing strong passwords and installing only verified and trusted software to safeguard their accounts.
This incident underscores the critical need for users to implement robust cybersecurity practices. Regularly updating passwords, enabling two-factor authentication, and ensuring devices are free from malware are essential steps in protecting personal information. As AI platforms like ChatGPT become increasingly integrated into daily life, both users and developers must remain vigilant against evolving cyber threats.
Over 225,000 OpenAI ChatGPT Credentials Stolen and Sold on Dark Web.
