News Over 100,000 ChatGPT Account Credentials Made Available on the Dark Web

[Admin]

Over 100,000 ChatGPT user credentials have been dumped on the dark web's markets since June 2022, something that poses a significant risk considering what can be contained within a single chat session.

Over 100,000 ChatGPT Account Credentials Made Available on the Dark Web : Read more

 

[Deleted member 2731765]

I'm pretty sure the malware has already collected few credentials saved in browsers, bank card details, crypto wallet information, cookies, browsing history, and other information by now.

It's too late now though. ChatGPT’s popularity has made it a popular choice for bad actors on the dark web, and a hacked account now exposes confidential or sensitive information. Armageddon is upon us !

Furthermore, IMO, there is the very real danger and high possibility that users might have reused the same password for their ChatGPT account as other online accounts as well. Ouch !

It's at least good to know that Samsung recently banned the use of ChatGPT and other generative AI tools. A recent Github survey revealed that a whopping 92% of developers use AI in an attempt to prevent burnout and increase productivity, which is insane !

EDIT:

How did you guys miss this news ?

New ChatGPT Attack Technique Spreads Malicious Packages

Vulcan Cyber's Voyager18 research team called the technique

www.infosecurity-magazine.com

 

[Deleted member 2731765]

The U.S., France, Morocco, Indonesia, Pakistan, and Brazil seem to have contributed the most users towards the stolen credentials.

As per the data collected, it says that these countries were impacted the most, India saw the largest numbers at more than 12,632, then Pakistan (9,217), Brazil (6,531), Vietnam (4,771), and Egypt (4,588) rounding out the top five.

 

[Amdlova]

Brazil doesn't count everyone has some information on darkweb.
Serasa make some huge leaks (credit score) with all database social number and other things...

 

[Anon#1234]

Over 100,000 ChatGPT user credentials have been dumped on the dark web's markets since June 2022, something that poses a significant risk considering what can be contained within a single chat session.

Over 100,000 ChatGPT Account Credentials Made Available on the Dark Web : Read more

Me who just uses bing:

 

[ThatMouse]

So it's Malware? That means that have your Google, Microsoft, and Apple single sign on creds which is far more troublesome than ChatGPT.

 

[bit_user]

Imagine the irony if the hackers actually used chatGPT to hack chatGPT!

 

[bit_user]

A recent Github survey revealed that a whopping 92% of developers use AI in an attempt to prevent burnout and increase productivity, which is insane !

That's a slight mischaracterization. The precise 92% quote is:

"a staggering number of developers — 92% — are already using AI tools either at work or in their leisure time."
​

 

[Exploding PSU]

Imagine the irony if the hackers actually used chatGPT to hack chatGPT!

"I use the ChatGPT to destroy the chatGPT!"

Lucky me, I use fresh account not related to anything else for the service, and have used it for nothing but to... write diaries. Sorry for straining your servers just so I can pour out my feelings though, it looks absolutely dystopian for me.

 

[IamNotChatGpt]

What's so special about this leak?

If you are brave naive enough to use illegal/stolen GPT cred, then you might as well scroll a pixel down, click on "indonesia credit card leak" and use that to purchase CGPT sub.

Like I genuinely don't get this news article/point of this leak.

 

[anbello262]

What's so special about this leak?

If you are brave naive enough to use illegal/stolen GPT cred, then you might as well scroll a pixel down, click on "indonesia credit card leak" and use that to purchase CGPT sub.

Like I genuinely don't get this news article/point of this leak.

"Employees enter classified correspondences or use the bot to optimize proprietary code. Given that ChatGPT's standard configuration retains all conversations, this could inadvertently offer a trove of sensitive intelligence to threat actors if they obtain account credentials."

It's pretty clear in the article, in my opinion.

 

[IamNotChatGpt]

"Employees enter classified correspondences or use the bot to optimize proprietary code. Given that ChatGPT's standard configuration retains all conversations, this could inadvertently offer a trove of sensitive intelligence to threat actors if they obtain account credentials."

It's pretty clear in the article, in my opinion.

now I get it, I was confused at first. The article has also been updated.

I mean if you post proprietary code into ChatGPT, an external online service, you should be 1) fired, 2) sued and 3) slapped across the face.

No sympathy here.

 

[bit_user]

I mean if you post proprietary code into ChatGPT, an external online service, you should be 1) fired, 2) sued and 3) slapped across the face.

No sympathy here.

Would you say the same thing about committing proprietary code to a private github repository? Companies with corporate github accounts do that all the time.

Why is ChatGPT any different? They're both commercial online services. I'm sure ChatGPT has many corporate users and offers privacy agreements assuring them that ChatGPT won't publish their IP.