ChatGPT Logins Leaked; Most Login Creds Stolen From India

Singaporean cybersecurity company Group-IB has reported that over 100,000 login credentials for ChatGPT have been exposed and exchanged on the dark web. ChatGPT

is a popular artificial intelligence chatbot. The Raccoon Infostealer software was used to steal the login credentials, with just over 101,000 compromised login credentials traded on dark web marketplaces between June 2022 and May 2023.

According to a Singaporean cybersecurity company, over 100,000 login credentials for the well-known artificial intelligence chatbot ChatGPT have been exposed and exchanged on the dark web during the past year.

According to Group-IB, the theft of login credentials peaked in May 2023, with 26,802 stolen logins after starting in June 2022. According to the study, the theft was carried out using the Raccoon Infostealer software, which victims downloaded after receiving a phishing email.

Just over 101,000 compromised logins for OpenAI’s flagship bot were traded on dark web marketplaces between June 2022 and May 2023, according to a blog post by Group-IB published on June 20.

Once a computer has been attacked, the malware can gather cookies, history, and login information. Information on a crypto wallet may also be included, according to Group-IB. Cryptocurrency theft in 2022 alone is estimated to have totaled over $3 Billion by blockchain analytics company Chainalysis.

Phishing attacks are one of the most prevalent types of cyberattacks, including delivering fake communications, like texts and messages on social media that look like they come come from a reliable source. They can take the shape of emails, texts, or messages on websites like Facebook or Twitter.

The logs of “information-stealing malware” contained the login information. Nearly 27,000 ChatGPT-related credentials peaked in May 2023 and were made available on the illegal markets.

The majority of the almost 100,000 hacked logins sold in the last year came from the Asia-Pacific area, accounting for about 40% of the total.

With over 12,500 leaks altogether, India-based credentials earned the top spot, and the United States ranked sixth with just under 3,000 logins. France placed first in Europe and finished seventh worldwide, just behind the United States.

Direct ChatGPT account creation is possible via OpenAI. Users now have the option of signing in and using the service using their Google, Microsoft, or Apple credentials. But OpenAI won’t respond right away.

According to Group-IB, more employees are using ChatGPT for business purposes than ever. It stated that because user inquiries and chat histories are maintained by default, unauthorized people could access confidential information about businesses.

Other people could use this information to launch attacks on businesses or specific employees. To make ChatGPT accounts more secure, the company urged customers to update their passwords regularly and enable two-factor authentication. Interestingly, the company mentioned that ChatGPT helped write the press release. 

Nancy J. Allen
Latest posts by Nancy J. Allen (see all)

Source: https://www.thecoinrepublic.com/2023/06/23/chatgpt-logins-leaked-most-login-creds-stolen-from-india/