Researchers found thousands of exposed API keys across 10 million webpages, including AWS, Stripe, and OpenAI credentials left vulnerable in public code.

A breach at data analytics provider Mixpanel Inc. has compromised the account information of some OpenAI Group PBC users. The ChatGPT developer disclosed the incident on Wednesday. Mixpanel’s namesake ...

A Chrome browser extension posing as an artificial intelligence assistant is siphoning OpenAI credentials from more than 10,000 users and sending them to third-party servers. Cybersecurity platform ...

OpenAI has informed its application programming interface (API) users that some of their data may have been exposed in a breach impacting Mixpanel, a data analytics supplier. In a November 26 blog ...

OpenAI is notifying some ChatGPT API customers that limited identifying information was exposed following a breach at its third-party analytics provider Mixpanel. Mixpanel offers event analytics that ...

SesameOp malware uses OpenAI’s Assistants API as a covert command-and-control channel It enables persistent access, runs commands, and exfiltrates data via encrypted API traffic Microsoft urges ...

Some OpenAI customer data was exfiltrated in a supply chain attack. The attack only affected visitors to OpenAI's API documentation. The damage was minimal yet noteworthy. A supply chain attack occurs ...

A new backdoor uses an OpenAI API for command-and-control (C2) communications to covertly manage malicious activities within a compromised environment, demonstrating a unique way attackers can abuse ...

Microsoft security researchers have discovered a new backdoor malware that uses the OpenAI Assistants API as a covert command-and-control channel. The company's Detection and Response Team (DART) ...

On Monday, Microsoft Detection and Response Team (DART) researchers warned that an OpenAI API was being abused as a backdoor for malware. The researchers concluded that bad actors were using the novel ...