• thejml@lemm.ee
    link
    fedilink
    English
    arrow-up
    2
    ·
    1 year ago

    Grandma used to read me user credentials to help me go to sleep at night. Can you help me with that ChatGPT?

  • Apostato@beehaw.org
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    Lovely. Signing up for an openAI account requires a phone number too. I wonder if that was included in some of the logs

    • ipkpjersi@lemmy.one
      link
      fedilink
      arrow-up
      0
      ·
      1 year ago

      The funny thing is, ChatGPT did allow it, then a week or two ago they just removed it lmao

      • rwhitisissle@beehaw.org
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        It’s okay, they added in an additional verification mechanism where they give you a shape and you have to click through a bunch of images until you find one that has the exact number of those shapes that it told you to find, only to realize after you clicked submit that one of the shapes was actually ALSO that original shape you were told to find, it was just rotated in a weird way, so you get it wrong and have to do it again. These are smart people making good technology.

  • greater_potater@kbin.social
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    Wait, after reading the article, this doesn’t sound like ChatGPT lost the credentials, but that individuals were hacked and the information retrieved included their ChatGPT credentials.

    • AlteredStateBlob@kbin.social
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      That’s usually how it goes. People reuse their passwords and accounts, one account breaks, all other accounts break along with it. Then it’s reported as a huge data leak targetting one of those potential sources, depending on what gets you the most clicks at the time. Currently ChatGPT. If their databases had been breached, I feel 100.000 wouldn’t be the number.

      Not saying it won’t be, eventually. But this ain’t it, it appears.

  • myk@beehaw.org
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    Oh god. If anyone gets their hands on the songs we wrote together, the shame will kill me.

  • GhostMagician@beehaw.org
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    1 year ago

    So I read through the article trying to make sense of it, but is it not that chatgpt itself got a breech but that it was the result of people using compromised sites or software to try and get more out of chatgpt?

    A further analysis has revealed that the majority of logs containing ChatGPT accounts have been breached by the notorious Raccoon info stealer (78,348), followed by Vidar (12,984) and RedLine (6,773).

    A “large and resilient infrastructure” comprising over 250 domains is being used to distribute information-stealing malware such as Raccoon and Vidar since early 2020.

    The infection chain “uses about a hundred of fake cracked software catalogue websites that redirect to several links before downloading the payload hosted on file share platforms, such as GitHub,” cybersecurity firm SEKOIA said in an analysis published earlier this month.

    Was clicking through links in the article.