Technology

OpenAI Data Breach: Threat Actor Allegedly Claims 20 Million Logins for Sale

A threat actor has allegedly obtained the login information for 20 million OpenAI accounts, including passwords and email addresses. According to the GBHackers report, This claim was made on an underground forum, where the actor provided a sample of the data and offered the full batch for sale at a nominal price. The authenticity of […] The post OpenAI Data Breach: Threat Actor Allegedly Claims 20 Million Logins for Sale appeared first on Cyber Security News.

Feb 6, 2025 - 22:08
 0
OpenAI Data Breach: Threat Actor Allegedly Claims 20 Million Logins for Sale

A threat actor has allegedly obtained the login information for 20 million OpenAI accounts, including passwords and email addresses.

According to the GBHackers report, This claim was made on an underground forum, where the actor provided a sample of the data and offered the full batch for sale at a nominal price.

The authenticity of these claims remains unverified, but the situation has raised significant concerns about data security in the AI industry.

The Alleged Breach

The post by the threat actor reads:”When I realized that OpenAI might have to verify accounts in bulk, I understood that my password wouldn’t stay hidden. I have more than 20 million access codes to OpenAI accounts. If you want, you can contact me – this is a treasure, and Jesus thinks so too.”

Threat actor’s claims on an underground forum (Source : HackManac)

This breach could have significant consequences if it turns out to be true:

  • Unauthorized Access: Compromised accounts could be used to access sensitive user data or exploit OpenAI’s API for malicious purposes.
  • Phishing and Fraud: Cybercriminals could use the stolen credentials to craft convincing phishing campaigns or commit financial fraud.
  • Reputational Damage: Such an incident could erode trust in OpenAI’s ability to safeguard user information.

HackManac shared the claims presented by threat actor in a post on the hacker forum.

This incident comes amid increasing cyber threats targeting AI platforms. In July 2023, researchers identified over 200,000 OpenAI credentials being sold on the dark web as part of stealer logs. 

Similarly, Microsoft recently investigated unauthorized data extraction from OpenAI’s API by a group linked to Chinese AI startup DeepSeek. 

These incidents highlight the growing interest of cybercriminals in exploiting AI technologies for malicious purposes.

As generative AI tools like ChatGPT become increasingly integrated into daily life, they also become lucrative targets for cybercriminals.

Neither OpenAI nor independent cybersecurity firms have confirmed the legitimacy of the threat actor’s claims. 

Investigations are likely underway to determine whether OpenAI’s systems were compromised or if the credentials were obtained through other means, such as phishing or malware attacks.

PCI DSS 4.0 & Supply Chain Attack Prevention – Free Webinar

The post OpenAI Data Breach: Threat Actor Allegedly Claims 20 Million Logins for Sale appeared first on Cyber Security News.

Read More

Tags:

Previous Article

Beware of Nova Stealer Malware Sold for $50 on Hacking Forums

Next Article

DeepSeek Phishing Sites Pursue User Data, Crypto Wallets

Related Posts

Fadu's FC5161 SSD Controller Breaks Cover in Western Digital's PCIe Gen5 Enterprise Drives

Fadu's FC5161 SSD Controller Breaks Cover in Western Di...

Jan 26, 2025  0

United Healthcare data breach may have affected 190 million Americans

United Healthcare data breach may have affected 190 mil...

Jan 27, 2025  0

Apple Announces New K-Pop Battle Series 'KPOPPED'

Apple Announces New K-Pop Battle Series 'KPOPPED'

Feb 7, 2025  0