ChatGPT Vulnerability May Have Exposed Users’ Payment Information
Infosecurity MagazineMar 29, 2023
On Friday, Italy's Data Protection Authority temporarily blocked the artificial intelligence (AI) software ChatGPT over data privacy concerns, making it the first Western country to take such action against the chatbot.
As justification for the move, the agency cited "the mass collection and storage of personal data," also noting that ChatGPT suffered a data breach on March 20 involving "users' conversations" and subscriber payment details.
Though OpenAI says isolated incidents are to blame for data breaches, the company may have had a security problem before the March 20 hack. ChatGPT's data scraping methods and its potential vulnerability to malware are among the justified and serious concerns being raised by public and private sector entities alike.
Despite what's being reported, to blame carelessness for the breach is flat-out wrong. An extremely small number of users were briefly exposed to the hack, but OpenAI quickly patched up the bug. ChatGPT is no more a threat to users' data than any other platform, and the whole story must be told before fear tactics replace common sense.
There's a 13% chance that OpenAI will limit interactions with GPT-4 on ChatGPT due to model misbehavior before the end of May 2023, according to the Metaculus prediction community.