
Hackers Abuse OpenAI Org Invites to Harvest Sensitive Prompts and API Activity
Hackers are actively abusing OpenAI’s organization invitation feature to launch a new form of “poisoned tenant” attack, allowing them to harvest sensitive prompts, API activity, and potentially corporate data from unsuspecting users. According to research disclosed by Push Security, attackers created a fake OpenAI organization using the company’s name, “Push Security Inc,” and sent targeted […]
The post Hackers Abuse OpenAI Org Invites to Harvest Sensitive Prompts and API Activity appeared first on Cyber Security News.