Group IB’s analysis showed that most of the stolen ChatGPT login credentials were done by the notorious information-stealing malware Raccoon info stealer.
OpenAI’s chatbot ChatGPT has been hit by one of the most common forms of cyber attacks, causing the leakage of more than 100,000 login credentials. Singapore-based cybersecurity firm Group-IB revealed in a report that the login credentials were gradually released over the past year.
Global-IB’s Report Reveals Compromised ChatGPT Login Credentials
According to the June 20 report, Global-IB discovered 101,134 devices with saved ChatGPT credentials on the dark web. Credential theft started in June 2022 and peaked at 26,802 in May 2023. Also, the data traded on illicit dark web places between June 2022 and May 2023. Following its findings, the cybersecurity firm found that most ChatGPT credentials being offered for sale are from the Asia-Pacific region. About 40.5% of ChatGPT accounts stolen by info stealers over the past year came from the region. Following Asia-Pacific are the Middle East and Africa, Europe, Latin America, and North America, respectively.
ChatGPT, which has become a top technology tool since its announcement in November 2022, stores users’ queries and AI responses. Hence, unauthorized access to the account could lead to the exposure of confidential information. Hackers often target these sensitive data and can be exploited for attacks against companies and their employees. Group-IB noted that info stealers had deployed their simplicity and effectiveness to become major sources of compromised personal data.
Notably, Group IB’s analysis showed that most of the stolen ChatGPT login credentials were done by the notorious information-stealing malware Raccoon info stealer. The malware finds itself on victims’ computers via a phishing email. It collects credentials saved in browsers, cookies, bank card details, and even crypto wallet details. Blockchain analytics firm Chainalysis revealed that over $3 billion in crypto was stolen last year.
ChatGPT’s Users Exposed
Furthermore, the cybersecurity leader highlighted the top 10 countries by the number of compromised ChatGPT credentials. India took the top position, followed by Pakistan and Brazil. Others are Vietnam, Egypt, the United States, France, Morocco, Indonesia, and Bangladesh. The Head of Threat Intelligence at Group-IB, Dmitry Shestakov, wrote:
“Many enterprises are integrating ChatGPT into their operational flow. Employees enter classified correspondences or use the bot to optimize proprietary code. Given that ChatGPT’s standard configuration retains all conversations, this could inadvertently offer a trove of sensitive intelligence to threat actors if they obtain account credentials. At Group-IB, we are continuously monitoring underground communities to promptly identify such accounts.”
In the report, the cybersecurity firm advises ChatGPT users to regularly update their passwords to protect their credentials. It also urged using two-factor authentication, which is additional security to their ChatGPT accounts.
next
Ibukun is a crypto/finance writer interested in passing relevant information, using non-complex words to reach all kinds of audience.
Apart from writing, she likes to see movies, cook, and explore restaurants in the city of Lagos, where she resides.
