Security News > 2024 > March > Reminder: Infostealer malware is coming for your ChatGPT credentials

Reminder: Infostealer malware is coming for your ChatGPT credentials
2024-03-07 06:27

Stolen ChatGPT credentials are a hot commodity on the dark web, according to Singapore-based threat intelligence firm Group-IB, which claims to have found some 225,000 stealer logs containing login details for the service last year.

According to Group-IB, it found around 130,000 of the ChatGPT credential-containing logs in the five months from June to October, 2023, representing a 36 percent increase in the number of logs found in the prior five-month period between January and May of last year.

OpenAI shuts down China, Russia, Iran, N Korea accounts caught doing naughty things How 'sleeper agent' AI assistants can sabotage your code without you realizing Google password resets not enough to stop these info-stealing malware strains Cybercrooks are telling ChatGPT to create malicious code.

In June of last year the firm revealed it had spotted more than 100,000 stealer logs containing ChatGPT usernames and passwords on the dark web - but that was for an entire year, between June 2022 and May 2023.

The number of logs containing ChatGPT credentials has been steadily increasing, with just 74 logs posted in June 2022, and 26,802 published in May 2023.

Of the more than 100,000 previously reported logs containing ChatGPT credentials, 95,827 were discovered from January to May. "The sharp increase in the number of ChatGPT credentials for sale is due to the overall rise in the number of hosts infected with information stealers, data from which is then put up for sale on markets or in ," Group-IB explained in its report.


News URL

https://go.theregister.com/feed/www.theregister.com/2024/03/07/more_than_250000/