Expert: "Combined Data Could Be Used for Scams"
The analytics partner of OpenAI, the developer of ChatGPT that has attracted global attention amid the artificial intelligence (AI) boom, has been hacked. However, OpenAI dismissed concerns, stating that there is no harm to general users.
According to Business Insider (BI) on the 27th (local time), OpenAI announced that a security breach occurred at the web analytics platform Mixpanel, which may have resulted in the exposure of user information from its developer platform.
Mixpanel has been responsible for collecting and analyzing usage patterns of users of OpenAI's API products. In a separate statement, Mixpanel explained that the security incident was a smishing attack, where information was stolen using text messages.
The potentially leaked information includes some API users’ IDs, names, email addresses, approximate locations, and the operating systems (OS) and browsers they mainly used. An API is a tool that allows external developers to use a company’s software or services.
Following the security incident, OpenAI has suspended the use of Mixpanel’s services for the time being. OpenAI warned that the leaked information could be exploited for phishing (electronic financial fraud) targeting developers, and advised caution regarding messages impersonating the company.
However, OpenAI emphasized, “This is not a breach of OpenAI’s systems,” and clarified that “there is no impact on ChatGPT users (who are not using API products).”
Jake Moore, Global Cybersecurity Advisor at security company ESET, pointed out, “The leaked data is of low sensitivity,” but added, “When combined, the information could be used to craft convincing scam messages.”
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
