Many paying customers of ChatGPT Plus have received a mail today informing them about a major data leak, the consequences of which are difficult to assess at the moment. This meant that (not only in account management) first and last names, the billing address, the credit card type, the expiration date of the credit card and the last four digits of the credit card could be viewed by other users. However, it is no longer possible to determine whether a logged-in user was able to abuse the system, because the notification was only sent after the leak was closed.
Let me quote the letter I received at 4:25 p.m. today:
We are writing to let you know about a recent issue with your ChatGPT account. During a nine-hour window on March 20, 2023, another ChatGPT user may have inadvertently seen your billing information when clicking on their own “Manage Subscription” page.
The billing information another user might have seen consisted of your first and last name, billing address, credit card type, credit card expiration date, and the last four digits of your credit card. The information did not include your full credit card number, and we have no evidence that any customer information was viewed by more than one other ChatGPT user. The issue has been resolved and no action is required by you.
The issue arose due to a bug in an open source library that we use to support ChatGPT infrastructure. We learned about the problem at 7:50 a.m. Pacific time on March 20, took down ChatGPT at 10:00 a.m. to address it, and fixed the bug by 12:39 p.m. We will be publishing a blog post today on openai.com with full technical details.
We apologize for the concern and inconvenience that this has caused. We take the trust you’ve placed in us very seriously, and are taking every measure to ensure that an error like this does not occur again. Please contact [email protected] if you have additional questions.
-The OpenAI Support Team
In this context, a longer blog entry has been published on OpenAI in the meantime, which goes into more detail about the problems:
OpenAI Blog: https://openai.com/blog/march-20-chatgpt-outage
10 Antworten
Kommentar
Lade neue Kommentare
Veteran
Urgestein
Urgestein
Urgestein
Veteran
1
Veteran
Veteran
Urgestein
Alle Kommentare lesen unter igor´sLAB Community →