Open AI, which has been the subject of our news frequently due to artificial intelligence supported systems such as ChatGPT and Dall-E, which it has recently launched, is on the agenda this time with a controversial issue. According to the investigations made by a cyber security company named Group-IB, the data of more than 100 thousand users using ChatGPT between June 2022 and May 2023 is circulating on the darkweb.
According to the statements made by Group-IB, ChatGPT leaks are increasing day by day and this data is sold on dark web sites through hackers. According to cyber security experts who mentioned that there is a large market, the data of ChatGPT users from almost every country has already been sold.
Open AI argues that users are wrong! (Not unfair either)
There is a point to be noted here. According to the study by Group-IB, the data captured is mostly the e-mail addresses and passwords that users use to log in. Being aware of this, Open AI argues that users are the number one responsible for the events. According to a spokesperson who made a statement on the subject, users who have been hacked in the past or who have malicious software installed on the device they accessed ChatGPT are losing their data to hackers without even realizing it.
According to the spokesperson, Open AI uses security measures that are the best in the industry. However, the fact that users set simple passwords or that they have been hacked in the past but did not take any importance brings it to this point. Open AI says there’s nothing they can do at this point either.
In May alone, data of more than 26 thousand users was shared!
Let’s take a look at the data shared by Group-IB. According to cyber security experts, the USA, France, Morocco, Indonesia, Pakistan and Brazil are among the countries where ChatGPT leaks are experienced. On the other hand; Asia-Pacific is the region where the seized information is most commonly sold. Experts say that in May alone, the login data of more than 26,000 ChatGPT users fell on the darkweb.
So what to do?
We cannot say that a device with Internet access is 100 percent secure. However, you can protect yourself in the internet world in very simple ways. Namely; Do not use the same password on any site. Also, don’t use simple passwords. With a little Google search, you can find channels that create strong passwords. Use one of them and make passwords unique across platforms. So how will you remember this password? The internet browser you are using already offers its own password saving feature. Save it.
If you do not trust the browser, you can use the password logger services of companies such as Google or Samsung. You will say, what if I steal the account there? To protect against this, enable 2FA verification for the e-mail address you registered for the service. Although it is not possible to be protected 100 percent, you can protect yourself from attacks with a rate of over 90 percent with these methods.