AI is the next big thing in the tech world and many big enterprises are beginning to welcome it with open arms. Following the rise of AI, ChatGPT has cemented itself as one of the most sought after AI tools in the industry. Well... I've got some bad news for users of the popular ChatGPT. According to a report by the Group-IB IS company over 101,100 account credentials are reported to have been sold on the dark web marketplaces between june 2022 and may 2023. According to the report, Indian ranks number one with 12,632 stolen credentials, while Pakistan and Brazil occupy the second and third positions respectively.
A geographical distribution statistics
Information stealers have become popular among cybercriminals for their ability to hijack passwords, cookies, credit cards, and other information from browsers, and cryptocurrency wallet extensions. "Logs containing compromised information harvested by info stealers are actively traded on dark web marketplaces," Group-IB said. Additional information about logs available on such markets includes the lists of domains found in the log as well as the information about the IP address of the compromised host. Typically offered based on a subscription-based pricing model, they have not only lowered the bar for cybercrime, but also serve as a conduit for launching follow-on attacks using the siphoned credentials.
To mitigate such risks, it's recommended that users follow appropriate password hygiene practices and secure their accounts with two-factor authentication (2FA) to prevent account takeover attacks.
Although, Group-IB feels the parent company OpenAI shouldn't be blamed for the exploited logins. But on a more serious note, I think we should be mindful of how we share our data because of the harm that can be done to us if it falls on the wrong hands.
Source:
https://thehackernews.com/2023/06/over-100000-stolen-chatgpt-account.html?m=1