OpenAI finally faces the security problem found a few days ago in its most disruptive product in recent months: ChatGPT. And it is that security problems appear even in the best families.
In this sense, it was this past Monday when users were astonished to see the query history of other users in their own accounts, and what is more, this security problem has also made it possible to leak the personal data of ChatGPT Plus subscribers. .
The data breach affected a very low percentage of subscribers
OpenAI says today in a statement that the security problem last Monday is the fault of the open source library of the Redis client, which in the case of the data leak of subscribers to ChatGPT Plus, only affected 1.2 % thereof.
In the case of subscribers, information related to the subscriber’s full name, email address, payment address, as well as the last four digits of their credit card number and expiration date has been leaked.
From OpenAI they clarify that:
In the hours before we took ChatGPT offline on Monday, it was possible for some users to see first and last name, email address, payment address, last four digits (only) of a credit card number, and your due date. Full credit card numbers were never exposed
Following the usual protocol in these cases
As is normal in these cases, subscribers affected by the security problem are being informed of it.
Also, Sam Altman used your Twitter account to apologize last Wednesday night, noting that:
We had a major issue in ChatGPT due to a bug in an open source library, for which a fix was released and we just finished validating. A small percentage of users were able to see the titles of other users’ chat history
In this way, OpenAI takes a step forward by assuming the error and feeling bad about what happened, an experience that will reinforce it to prevent similar situations from occurring in the future.