Hackers Abuse OpenAI Org Invites to Harvest Sensitive Prompts and API Activity

Hackers are actively abusing OpenAI’s organization invitation feature to launch a new form of “poisoned tenant” attack, allowing them to harvest sensitive prompts, API activity, and potentially corporate data from unsuspecting users. According to research disclosed by Push Security, attackers created a fake OpenAI organization using the company’s name, “Push Security Inc,” and sent targeted […]

The post Hackers Abuse OpenAI Org Invites to Harvest Sensitive Prompts and API Activity appeared first on Cyber Security News.

This article has been indexed from Cyber Security News

Read the original article: