From June 2022 to May 2023, more than 101,000 login credentials for the popular AI chatbot ChatGPT were sold on various darknet marketplaces. This is reported by the cybersecurity company Group-IB.
According to our findings, the Asia-Pacific region has experienced the highest concentration of ChatGPT credentials being offered for sale. pic.twitter.com/s3TbsntCgX
— Group-IB Threat Intelligence (@GroupIB_TI) June 20, 2023
Researchers found the information in infostylers’ logs.
Only in May 2023, almost 27,000 credentials related to ChatGPT became available on online marketplaces. The largest share of leaks — 40% — fell to the Asia-Pacific region.
Group-IB noted that ChatGPT accounts can be created either directly through OpenAI, or by using existing logins from Google, Microsoft or Apple. Requests and chat histories are stored by default.
Experts warned that information accessible to third parties could be used to carry out attacks against companies or individuals.
Users were advised to regularly update passwords and use two-factor authentication to protect their accounts.
Earlier ForkLog reported that an American radio host sued OpenAI after ChatGPT erroneously named him as a defendant in a criminal case.