cryptopolitan

10,000 users’ OpenAI API keys have found stolen by fake Chrome AI extension

A Chrome extension posing as an AI assistant exposed more than 10,000 users, secretly harvesting OpenAI API keys and sending data to attacker-controlled servers. Researchers say at least 459 API keys ...
Forbes

OpenAI Data Breach Exposes User Data. Here’s What To Do Immediately

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. A few days ago, on November 26th, right before Thanksgiving, OpenAI, the maker of ChatGPT, ...
Bleeping Computer

OpenAI discloses API customer data breach via Mixpanel vendor hack

OpenAI is notifying some ChatGPT API customers that limited identifying information was exposed following a breach at its third-party analytics provider Mixpanel. Mixpanel offers event analytics that ...
Infosecurity-magazine.com

OpenAI Warns of Mixpanel Data Breach Impacting API Users

OpenAI has informed its application programming interface (API) users that some of their data may have been exposed in a breach impacting Mixpanel, a data analytics supplier. In a November 26 blog ...
techtimes

OpenAI Launches ChatGPT AI Shopping Assistant Upgrade in Time for Black Friday Sale

OpenAI already has a shopping assistant feature for ChatGPT, but the company is coming in with an upgrade for the tool that adds research functions for your convenience. This latest tool for ChatGPT's ...
CNBC

OpenAI announces shopping research tool in latest e-commerce push

OpenAI announced a new tool called "shopping research" that will generate detailed, in-depth shopping guides. The guides include top products, key differences between the products and up-to-date ...
VentureBeat

OpenAI is ending API access to fan-favorite GPT-4o model in February 2026

OpenAI has sent out emails notifying API customers that its chatgpt-4o-latest model will be retired from the developer platform in mid-February 2026,. Access to the model is scheduled to end on ...
CSOonline

New backdoor ‘SesameOp’ abuses OpenAI Assistants API for stealthy C2 operations

Microsoft uncovers a months-long campaign where threat actors used OpenAI’s legitimate API as a covert command-and-control channel, bypassing traditional detection methods. In a newly uncovered ...
SecurityWeek

SesameOp Malware Abuses OpenAI API

A component of the newly discovered SesameOp backdoor uses the API to store and relay commands from the C&C server. A threat actor has abused the OpenAI Assistants API as a communication mechanism ...
Infosecurity-magazine.com

OpenAI Assistants API Exploited in 'SesameOp' Backdoor

Threat actors are weaponizing the OpenAI Assistants Application Programming Interface (API) to deploy a backdoor and manage compromised devices remotely. The backdoor was discovered by Microsoft ...
The Hacker News

Microsoft Detects "SesameOp" Backdoor Using OpenAI's API as a Stealth Command Channel

Microsoft has disclosed details of a novel backdoor dubbed SesameOp that uses OpenAI Assistants Application Programming Interface (API) for command-and-control (C2) communications. "Instead of relying ...
Mashable

Microsoft warns that an OpenAI API is being abused as a backdoor for 'espionage'

On Monday, Microsoft Detection and Response Team (DART) researchers warned that an OpenAI API was being abused as a backdoor for malware. The researchers concluded that bad actors were using the novel ...