- A hacker would have registered 20 million OPENAI connections for sale
- However, the origins of these skills titles are disputed
- Openai says that his investigation did not find any evidence of a compromise
A hacker claims to sell the connection information of 20 million OPENAI user accounts – but the company says that its own investigation has found no evidence of hacking.
A Malwarebytes Labs report discovered that a cybercriminated which bears the name “Emirking” had listed a set of data for sale on a cybercrime forum claiming to contain “20 million codes of access to OPENAI accounts”.
Openai replied, declaring: “We take these claims seriously. We have not seen any evidence that this is linked to a compromise of OPENAI systems to date. Violations like these can have catastrophic consequences for the company and users, but there are some red flags which indicate that this incident being less than authentic, here is what we know.
An improbable story?
In the initial Lab Malwarebytes report, there was a doubt about the origins of information, the report describing
“It seems unlikely that such a quantity of skills can be collected in phishing operations against users, so if the complaint is true, Emirking may have found a way to compromise the sub-domain auth0.openai.com by exploiting a vulnerability or by obtaining the administrator auth0.openai.com by operating a vulnerability or by obtaining the administrator identification information. “
The report also pointed out that the cybercriminal allegedly responsible for the leak was a relatively new user of the forums – which would not mean much alone, but the cybersecurity of Kela also evaluated the available data and concluded that the information identification were obtained via infostealer malware.
The sample analyzed by Kela showed compromise connections linked to OpenAi services and contained authentication details at “Auth0.openai.com”.
Security researchers then referenced by these details with its own lake of “compromise accounts obtained from malware infostaler, which contains more than a billion records, including more than 4 million robots collected in 2024.”
“All the identification information of the sample shared by the actor“ Emirking ” proved to come from these compromised accounts, probably referring to the source of the 20 million complete OPENAI accounts that the actor has the intention to sell, “confirmed the security company.
In the end, the survey concluded: “The majority of skills compromised skills of the OpenAi services offered for sale on Breachforums by Emirking are not linked to a violation of OPENAAI systems.”
The skills titles have been deemed to be part of a wider set of data “scratched by a mixture of private and public sources that sell and share newspapers to infostal” – not an unsuccessful compromise.
Keep up
No matter how the disclosed references have been acquired, anyone who has disclosed their contact details is in danger. The main danger with this incident is social engineering attacks and identity theft.
Given that many users of Chatbots AD Put (sometimes involuntarily) personal information, anyone with access to their accounts could use the compromised email address to design personal and specific phishing attacks designed to steal even more Information.
The simple fact of requesting a chatbot for recommendations for restaurants in your city, advice on budgeting or specific questions or summaries can give attackers all the information they need to develop a convincing way to contact Seeming to be a colleague, a trusted business, a friend or a family member.
Being vigilant is the most effective way to fight this. Do not give any information to an unknown person or an unexpected contact that you have not completely checked first, and be sure to click on any link in which you do not trust 100%.
Also make sure to create a solid and secure password, and it is important that you do not reuse passwords from one site to another – this helps in quarantine any account that has been raped.
It is a similar process during the attenuation of the risk of identity theft. Keep an eye on your accounts, declarations and invoices to make sure that there is nothing that you do not recognize and let your bank know immediately if there is something suspect.
We have also listed certain software that can mainly do work for you, monitor your credit files, warn of suspicious activity and alert you if personal information is used (such as new bank accounts in your name). Some even offer identity and insurance recovery policies up to $ 1 million, so consult our choices for the best protection against identity theft for families if you are concerned about your information.
