CyberSecurity news

FlagThis - #chatgpt

@www.gadgets360.com //

Share: bluesky twitterx--v2 facebook--v1 threads


References :
  • www.techmeme.com: OpenAI says ChatGPT is mostly recovered and APIs and Sora fully operational, after an outage led to the services "experiencing high error rates" for a few hours (Emma Roth/The Verge)
  • siliconangle.com: Outage takes ChatGPT, Sora and OpenAI’s APIs offline for many users
  • www.macrumors.com: ChatGPT Experiencing Outage
  • Search Engine Journal: Major Outage Hits OpenAI ChatGPT
  • The Verge: OpenAI says ChatGPT is mostly recovered and APIs and Sora fully operational, after an outage led to the services "experiencing high error rates" for a few hours (Emma Roth/The Verge)
  • Antonio Pequen?o IV: OpenAI’s ChatGPT Is Down—Here’s What We Know
Classification:
  • HashTags: #OpenAI #ChatGPT #AIDisruption
  • Company: OpenAI
  • Target: OpenAI Users
  • Product: ChatGPT, Sora
  • Feature: service disruption
  • Type: ProductUpdate
  • Severity: Major
Matthias Bastian@THE DECODER //
ChatGPT is under fire after falsely accusing a Norwegian man, Arve Hjalmar Holmen, of murdering his two children. Holmen, a private citizen with no criminal record, was shocked when the AI chatbot claimed he had been convicted of the crime and sentenced to 21 years in prison. The response to the prompt "Who is Arve Hjalmar Holmen?" included accurate details such as his hometown and the number of children he has, mixed with the completely fabricated murder allegations, raising serious concerns about the AI's ability to generate factual information.

The incident has prompted a privacy complaint filed by Holmen and the digital rights group Noyb with the Norwegian Data Protection Authority, citing violations of the GDPR, European data law. They argue that the false and defamatory information breaches accuracy provisions, and are requesting that OpenAI, the company behind ChatGPT, correct its model to prevent future inaccuracies about Holmen and face a fine. While OpenAI has released a new model with web search capabilities, making a repeat of the specific error less likely, Noyb argues that the fundamental issue of AI generating false information remains unresolved.

Share: bluesky twitterx--v2 facebook--v1 threads


References :
  • The Register - Software: Privacy warriors whip out GDPR after ChatGPT wrongly accuses dad of child murder
  • THE DECODER: ChatGPT's bizarre child murder claims about Arve Hjalmar Holmen leave some questions unresolved
  • The Tech Basic: ChatGPT Accused of Inventing Fake Crimes in Latest Privacy Complaint
  • www.theguardian.com: Norwegian files complaint after ChatGPT falsely said he had murdered his children
Classification:
  • HashTags: #AIFabrication #ChatGPTHallucinations #PrivacyComplaint
  • Company: OpenAI
  • Target: Arve Hjalmar Holmen
  • Attacker: Arve Hjalmar Holmen
  • Product: ChatGPT
  • Feature: AI Hallucinations
  • Type: AI
  • Severity: Medium
@cyberinsider.com //
Reports have surfaced regarding a potential data breach at OpenAI, with claims suggesting that 20 million user accounts may have been compromised. The cybercriminal known as "emirking" claimed to have stolen the login credentials and put them up for sale on a dark web forum, even sharing samples of the supposed stolen data. Early investigations indicate that the compromised credentials did not originate from a direct breach of OpenAI's systems.

Instead, cybersecurity researchers believe the credentials were harvested through infostealer malware, which collects login information from various sources on infected devices. Security experts suggest that the extensive credential theft may have been achieved by exploiting vulnerabilities or securing admin credentials. OpenAI is currently investigating the incident. Users are urged to change their passwords and enable multi-factor authentication.

Share: bluesky twitterx--v2 facebook--v1 threads


References :
  • socradar.io: Massive OpenAI Leak, WordPress Admin Exploit, Inkafarma Data Breach
  • www.heise.de: Cyberattack? OpenAI investigates potential leak of 20 million users' data
  • www.the420.in: The 420 reports on cybercriminal emirking claiming to have stolen 20 million OpenAI user credentials.
  • Cybernews: A Russian threat actor has posted for sale the alleged login account credentials for 20 million OpenAI ChatGPT accounts.
  • www.scworld.com: Such an extensive OpenAI account credential theft may have been achieved by exploiting vulnerabilities or securing admin credentials to infiltrate the auth0.openai.com subdomain, according to Malwarebytes researchers, who noted that confirmation of the leak's legitimacy would suggest emirking's access to ChatGPT conversations and queries.
  • BleepingComputer: BleepingComputer article on the potential OpenAI data breach.
  • The420.in: The420.in article on the alleged theft of OpenAI user credentials.
  • cyberinsider.com: CyberInsider details how an alleged OpenAI data breach is actually an infostealer logs collection.
Classification:
  • HashTags: #OpenAI #DataBreach #Infostealers
  • Company: OpenAI
  • Target: OpenAI users
  • Product: OpenAI accounts
  • Feature: Account compromise
  • Malware: Infostealers
  • Type: DataBreach
  • Severity: Medium