FlagThis

OmniGPT, a popular AI aggregator providing access to models like ChatGPT-4 and Gemini, has allegedly suffered a significant data breach. A threat actor known as "Gloomer" claims responsibility, leaking 30,000 user email addresses and phone numbers, along with a staggering 34 million lines of chat messages. The breach raises serious cybersecurity and privacy concerns due to the sensitivity of user interactions with AI chatbots.




The leaked data reportedly includes API keys, credentials, and file links, potentially exposing OmniGPT's session management vulnerabilities. Samples of the stolen data were posted on BreachForums, a marketplace for illicit data sales. Cybersecurity experts emphasize the potential for identity theft, phishing scams, and financial fraud for affected users.

ImgSrc: www.secureworld

References :

• cyberinsider.com: OmniGPT Allegedly Breached: 34 Million User Messages Leaked
• hackread.com: OmniGPT AI Chatbot Breach: Hacker Leaks User Data and 34 Million Lines of Chat Messages b/w Users and Chatbot
• MSSP feed for Latest: OmniGPT Claimed To Be Subjected to Extensive Breach
• SecureWorld News: A major security incident has allegedly struck OmniGPT, a popular AI aggregator that provides users access to multiple AI models, including ChatGPT-4, Claude 3.5, Gemini, and Midjourney.
• CyberInsider: OmniGPT Allegedly Breached: 34 Million User Messages Leaked
• securityaffairs.com: Hackers have allegedly breached OmniGPT, a ChatGPT-like AI chatbot platform, exposing sensitive data of over 30,000 users. The leaked data reportedly includes email addresses, phone numbers, API keys, and over 34 million user-chatbot interactions.

Classification:

• HashTags: #DataBreach #OmniGPT #AI
• Company: OmniGPT
• Target: OmniGPT Users
• Product: OmniGPT
• Feature: Data Leakage
• Type: DataBreach
• Severity: Disaster