It appears that the dark web is full of stolen ChatGPT logins.
Singapore-based cybersecurity firm Group-IB has reported that login details of the well-known AI chatbot ChatGPT were compromised and circulated on the dark web.
Over the previous year, the company discovered that a staggering amount of approximately 101,000 compromised ChatGPT logins were being exchanged in the dark web marketplaces.
Did you know?
Want to get smarter & wealthier with crypto?
Subscribe - We publish new crypto explainer videos every week!
How to Trade NFTs Safely? (Animated Explainer For Beginners)
According to a blog post published by Group-IB on June 20th, these login details were traced back to the logs of what they called "info-stealing malware." The situation reached its highest point in May 2023, with nearly 27,000 ChatGPT-related credentials found on online black markets.
The analysis revealed that the majority of these compromised logins, almost 40% of the total figure, originated from the Asia-Pacific region. More specifically, Indian-based credentials held the highest rank, with over 12,500 being compromised.
Notably, the United States also featured in the list with around 3,000 leaked logins, landing at the sixth spot, while France, with the highest number of logins breached in Europe, held the seventh spot globally.
ChatGPT, OpenAI's flagship bot, allows users to create accounts directly or use their Google, Microsoft, or Apple accounts to log in. With such widespread usage of ChatGPT, Group-IB has observed an increasing trend of employees utilizing this service for professional purposes.
However, this presents a significant risk. The cybersecurity firm warned that company secrets might be at risk since user interactions and chat histories are stored by default. Unauthorized access to these accounts could result in confidential information being exploited to launch attacks against businesses or individuals.
To mitigate this issue, Group-IB has advised users to implement safety measures such as updating passwords regularly and employing two-factor authentication to bolster the security of their ChatGPT accounts.
As user dependency on AI and digital platforms increase, ensuring their security becomes paramount. This incident serves as a reminder of the relentless threats lurking in the digital landscape and underscores the importance of adopting robust cybersecurity measures.
However, despite various risks, crypto-related companies continue implementing ChatGPT and AI into their services. In June, a crypto risk management firm Elliptic revealed the integration of ChatGPT to boost its efficiency in identifying cryptocurrency threats.
