Overview
Singapore-based cybersecurity research company Group-IB found that around 100,000 ChatGPT credentials have been discovered in online marketplaces known as the dark web. The ChatGPT login info was stolen by malware over a year, using the same software that steals email passwords and other personal information. The Asia-Pacific region was the highest source of the ChatGPT credentials sold. Group-IB identified three kinds of malware as the main culprits, Raccoon, Vidar, and Redline. The leak of credentials does not arise from any gap on OpenAI’s security. OpenAI acknowledged that it may need to set similar policies and is currently investigating the accounts that have been exposed.