At the end of the week, a message appeared on one of the hacker forums, the author of which claimed that he managed to kidnap the personal data of Openai customers, including email addresses and passwords. Against this background, Openai announced an investigation, adding that at the moment there was no evidence of data leakage.
Image source: OpenAI
The author of the publication at the Hacker Forum posted a small selection of data as a confirmation of his words. His purpose was to sell the entire database in which, as he claimed, the data of Openai customers are contained.
Although the reliability of the database has not yet been confirmed, Openai said that it refers to statements about the leakage of data “seriously” and is currently conducting an audit. “We are serious about these statements. At the moment, we have not seen any evidence that this is due to the hacking of Openai systems, ”the company representative commented on this issue.
The co -founder and cybersecurity expert of Cyansmart Jamie Akhtar believes that consumers should be taken into account when updating passwords and used to authorize data. In his opinion, cybercriminals can use this incident for their own purposes.
«If the information is confirmed, this violation may have huge consequences for both Openai and its customers. Millions of people and enterprises have introduced the company’s technology into their daily lives, so the potential damage to the OpenAI reputation in the field of data security may be huge, ”Akhtar said. He also noted that in case of hacking the IT systems of the company, the stolen data of customers can be used by attackers to access confidential information, as well as working with the API Openai in order to spread malware. Users can also be used to conduct targeted phishing campaigns or committing financial fraud.