According to reliable dark web marketplace data, more than 101,000 ChatGPT user accounts have been stolen by information-stealing malware over the time span of a year.
Info stealers such as Raccoon, Vidar, and RedLine are mainly responsible for these breaches.
Group-IB said in a report shared with The Hacker News stated that,
“The number of available logs containing compromised ChatGPT accounts reached a peak of 26,802 in May 2023.”
“The Asia-Pacific region has experienced the highest concentration of ChatGPT credentials being offered for sale over the past year.”
They further added,
“Logs containing compromised information harvested by info stealers are actively traded on dark web marketplaces,” Group-IB said.
“Additional information about logs available on such markets includes the lists of domains found in the log as well as the information about the IP address of the compromised host.”
As far as the most targeted regions are concerned, Asia-Pacific had almost 41,000 compromised accounts between June 2022 and May 2023, Europe had nearly 17,000, and North America ranked fifth with 4,700.
For those unaware, Information stealers are a malware category that targets account data stored on applications such as email clients, web browsers, gaming services, and others.
Since ChatGPT allows users to store their old conversations, access to a ChatGPT can also offer access to proprietary information, internal business strategies, personal communications, software code, and more.
As always we recommend our Techworm readers to stay safe online, change their passwords on a regular basis, and always enable two-factor authentication.
Additionally, if you were actively using ChatGPT during the aforementioned time period it will be wise to either disable the chat saving feature from the platform’s settings menu or manually delete those conversations.
