OpenAI Investigating Claim of 20 Million Stolen User Credentials 15

Posted by BeauHD on Friday February 07, 2025 @08:45PM from the heads-up dept.

OpenAI says it's investigating after a hacker claimed to have stolen login credentials for 20 million OpenAI accounts and advertised the data for sale on a dark web forum. Though security researchers doubt on the legitimacy of the breach, the AI company stated that it takes the claims seriously, advising users to enable two-factor authentication and stay vigilant against phishing attempts. Decrypt reports: Daily Dot reporter Mikael Thalan wrote on X that he found invalid email addresses in the supposed sample data: "No evidence (suggests) this alleged OpenAI breach is legitimate. At least two addresses were invalid. The user's only other post on the forum is for a stealer log. Thread has since been deleted as well."

"We take these claims seriously," the spokesperson said, adding: "We have not seen any evidence that this is connected to a compromise of OpenAI systems to date."

OpenAI Investigating Claim of 20 Million Stolen User Credentials

This discussion has been archived. No new comments can be posted.

Load All Comments

Search 15 Comments Log In/Create an Account

Comments Filter:

Not a matter of if ... (Score:2)

by RitchCraft ( 6454710 ) writes:

... but when.
- - Re: (Score:2)
    
    by RitchCraft ( 6454710 ) writes:
    
    Are the MAGA signs stuck in the ground included?
Did ChatGPT write the script? (Score:3)

by RonVNX ( 55322 ) writes: on Friday February 07, 2025 @09:28PM (#65151147)

"I need a Python script that steals all of ChatGPT's user's credentials."

Reminds me of ... (Score:2)

by cpurdy ( 4838085 ) writes:

Americans Suddenly Investigating Claim of 346,550,709 Million Stolen Social Security Numbers and Other Identifying Information
- Re: (Score:2)
  
  by Mr. Dollar Ton ( 5495648 ) writes:
  
  They were not "stolen", they were legally obtained after authorization by an executive order from vice president trump.
  - Re: (Score:2)
    
    by quenda ( 644621 ) writes:
    
    America still has rule of law, I hope? Executive orders cannot over-ride legislation from Congress, or the courts.
    So, are the privacy laws inadequate?
    Or is the president breaking them?
    A nation needs a functioning Parliament, Executive and Judiciary.
    - Re: (Score:2)
      
      by Mr. Dollar Ton ( 5495648 ) writes:
      
      No rule of law is needed, because it interferes strongly with the theory and practice of government efficiency, as announced by the new padishah-emperor of Mars and president ipso facto.
To paraphrase Vizzini (Score:2)

by TVmisGuided ( 151197 ) writes:

"You've stolen what I've rightfully kidnapped!"
Netcraft confirms it: (Score:1)

by TronNerd82 ( 9588972 ) writes:

AI is not dying yet (dammit)
Major data theft ? Probably DOGE. (Score:2)

by RockDoctor ( 15477 ) writes:

Is Musk involved in the same business as "OpenAI"?
Yes.
Q.E.D.
'At least two addresses were invalid.' (Score:2)

by Fly Swatter ( 30498 ) writes:

Well, that settles it. Because no one ever tries to create an account using fake information or short lived email addresses to get past verification.
Just use Postman... (Score:2)

by rwrife ( 712064 ) writes:

Just look on Postman's public API listings, you'll find millions of OpenAI API keys (and others) where users accidentally leaked credentials.

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

OpenAI Investigating Claim of 20 Million Stolen User Credentials 15

OpenAI Investigating Claim of 20 Million Stolen User Credentials More Login

OpenAI Investigating Claim of 20 Million Stolen User Credentials

Not a matter of if ... (Score:2)

Re: (Score:2)

Did ChatGPT write the script? (Score:3)

Reminds me of ... (Score:2)

Re: (Score:2)

Re: (Score:2)

Re: (Score:2)

To paraphrase Vizzini (Score:2)

Netcraft confirms it: (Score:1)

Major data theft ? Probably DOGE. (Score:2)

'At least two addresses were invalid.' (Score:2)

Just use Postman... (Score:2)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot