Tag: chatgpt

Atlas-Browser, der erste Schritt zum KI-Betriebssystem

Nov 16, 2025 12:49 AM

Tags: ai, chatgpt, computer, openai

Der ChatGPT Atlas-Browser von OpenAI steht als eine Art Prototyp dafür, wie wir alle Computer in Zukunft nutzen sollen. Betriebssysteme werden in Zukunft mit KI laufen. Aber wie steht es mit der Sicherheit dieses ganzen Ansatzes? Innerhalb weniger Jahre werden … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/11/16/chatgpt-atlas-browser-der-erste-schritt-zum-ki-betriebssystem/
OpenAI stemmt sich gegen die Forderung, Millionen von ChatGPT-Konversationen freizugeben

Nov 14, 2025 5:49 PM

Tags: ai, chatgpt, cyber, openai, software

OpenAI ist in eine große Kontroverse verstrickt, weil man möchte, dass die Firma Millionen von ChatGPT-Konversationen herausrückt. Das KI-Unternehmen wehrt sich jedoch bislang dagegen. Thomas Boele, Regional Director Sales Engineering, CER / DACH bei Check Point Software Technologies, gibt seine Einschätzung aus der Sicht eines etablierten Herstellers von Cyber-Sicherheitsprodukten ab. ‘Beim Datenschutz geht es nicht…
Cybersecurity Snapshot: Refresh Your Akira Defenses Now, CISA Says, as OWASP Revamps Its App Sec Top 10 Risks

Nov 14, 2025 4:49 PM

Tags: access, advisory, ai, antivirus, application-security, attack, authentication, backup, business, chatgpt, cisa, ciso, cloud, compliance, control, corporate, cve, cyber, cybersecurity, data, defense, detection, encryption, endpoint, exploit, finance, firewall, flaw, framework, germany, group, guide, healthcare, infrastructure, injection, Internet, iot, law, malware, mfa, mitigation, phishing, privacy, programming, ransomware, resilience, risk, service, soc, software, supply-chain, tactics, technology, threat, tool, update, vulnerability

Learn why you should revise your Akira ransomware protection plans. Plus, find out what’s new in OWASP’s revamped Top 10 Web Application Risks list. Also, find out about agentic AI’s cognitive degradation risk. And get the latest on AI security trends and CISO compensation. Key takeaways CISA and other agencies are urging organizations, especially in…
Cybersecurity Snapshot: Refresh Your Akira Defenses Now, CISA Says, as OWASP Revamps Its App Sec Top 10 Risks

Nov 14, 2025 4:49 PM

Tags: access, advisory, ai, antivirus, application-security, attack, authentication, backup, business, chatgpt, cisa, ciso, cloud, compliance, control, corporate, cve, cyber, cybersecurity, data, defense, detection, encryption, endpoint, exploit, finance, firewall, flaw, framework, germany, group, guide, healthcare, infrastructure, injection, Internet, iot, law, malware, mfa, mitigation, phishing, privacy, programming, ransomware, resilience, risk, service, soc, software, supply-chain, tactics, technology, threat, tool, update, vulnerability

Learn why you should revise your Akira ransomware protection plans. Plus, find out what’s new in OWASP’s revamped Top 10 Web Application Risks list. Also, find out about agentic AI’s cognitive degradation risk. And get the latest on AI security trends and CISO compensation. Key takeaways CISA and other agencies are urging organizations, especially in…
ChatGPT Exploited Through SSRF Flaw in Custom GPT Actions

Nov 13, 2025 7:50 PM

Tags: ai, chatgpt, cloud, data-breach, exploit, flaw

A patched SSRF flaw in ChatGPT’s Custom GPTs exposed how AI features can unintentionally reveal sensitive cloud metadata. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/artificial-intelligence/chatgpt-exploited-through-ssrf-flaw-in-custom-gpt-actions/
Wie ChatGPT sich selbst eine Prompt Injection zufügt

Nov 12, 2025 6:49 PM

Tags: access, ai, chatgpt, cyberattack, endpoint, injection, Internet, LLM, microsoft, openai, tool, vulnerability

Forscher haben neue Methoden für Angriffe über ChatGPT aufgedeckt.Forscher des Sicherheitsunternehmens Tenable haben sieben neue Möglichkeiten entdeckt, wie Angreifer ChatGPT dazu bringen können, private Informationen aus den Chat-Verläufen der Nutzer preiszugeben. Bei den meisten dieser Angriffe handelt es sich um indirekte Prompt Injections, die die Standard-Tools und -funktionen von ChatGPT ausnutzen. Etwa die Fähigkeit, den…
AI-Sicherheit: Fast alle LLMs leaken private API-Keys auf Github; ChatGPT hat Schwachstellen

Nov 12, 2025 6:49 PM

Tags: ai, api, chatgpt, Internet, LLM, vulnerability

AI bzw. der Gebrauch von Sprachmodellen (LLMs) wie ChatGPT ist ja Dauerthema angeblich so wichtig wie geschnitten Brot. Insidern ist klar, dass diese Technologie die größte Gefahr für Daten-und Unternehmenssicherheit seit Einführung des Internet ist. Mir sind zwei Informationssplitter … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/11/12/ai-llms-die-grossen-leaker-der-zukunft/
Data Privacy in the World of ChatGPT: Risks, Importance, Best Practices

Nov 11, 2025 12:20 PM

Tags: ai, best-practice, chatgpt, data, openai, privacy, risk

What is ChatGPT? ChatGPT is a conversational AI that has been created by OpenAI and is based on the ability to understand and generate text that is in many ways similar to how a human being would write it, given an input. It belongs to a line of models called the Generative Pre-trained Transformer orRead…
Data Privacy in the World of ChatGPT: Risks, Importance, Best Practices

Nov 11, 2025 12:20 PM

Tags: ai, best-practice, chatgpt, data, openai, privacy, risk

What is ChatGPT? ChatGPT is a conversational AI that has been created by OpenAI and is based on the ability to understand and generate text that is in many ways similar to how a human being would write it, given an input. It belongs to a line of models called the Generative Pre-trained Transformer orRead…
HackedGPT: Tenable deckt Sicherheitslücken in ChatGPT auf

Nov 11, 2025 12:20 PM

Tags: ai, chatgpt, cyberattack, injection

Tenable empfiehlt Anbietern von KI-Lösungen, ihre Abwehrmaßnahmen gegen Prompt Injection zu verstärken, indem sie sicherstellen, dass Sicherheitsmechanismen wie url_safe wie vorgesehen funktionieren, und indem sie Browsing-, Such- und Speicherfunktionen isolieren, um kontextübergreifende Angriffe zu verhindern. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/hackedgpt-tenable-deckt-sicherheitsluecken-in-chatgpt-auf/a42677/
HackedGPT: Tenable deckt Sicherheitslücken in ChatGPT auf

Nov 11, 2025 12:20 PM

Tags: ai, chatgpt, cyberattack, injection

Tenable empfiehlt Anbietern von KI-Lösungen, ihre Abwehrmaßnahmen gegen Prompt Injection zu verstärken, indem sie sicherstellen, dass Sicherheitsmechanismen wie url_safe wie vorgesehen funktionieren, und indem sie Browsing-, Such- und Speicherfunktionen isolieren, um kontextübergreifende Angriffe zu verhindern. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/hackedgpt-tenable-deckt-sicherheitsluecken-in-chatgpt-auf/a42677/
7 kritische Sicherheitslücken als Wegbereiter für Datendiebstahl und Hijacking

Nov 11, 2025 5:19 AM

Tags: chatgpt

First seen on datensicherheit.de Jump to article: www.datensicherheit.de/chatgpt-7-sicherheitsluecken-wegbereiter-datendiebstahl-hijacking
7 kritische Sicherheitslücken als Wegbereiter für Datendiebstahl und Hijacking

Nov 11, 2025 5:19 AM

Tags: chatgpt

First seen on datensicherheit.de Jump to article: www.datensicherheit.de/chatgpt-7-sicherheitsluecken-wegbereiter-datendiebstahl-hijacking
7 kritische Sicherheitslücken als Wegbereiter für Datendiebstahl und Hijacking

Nov 11, 2025 5:19 AM

Tags: chatgpt

First seen on datensicherheit.de Jump to article: www.datensicherheit.de/chatgpt-7-sicherheitsluecken-wegbereiter-datendiebstahl-hijacking
Researchers trick ChatGPT into prompt injecting itself

Nov 10, 2025 11:22 AM

Tags: attack, chatgpt, data, endpoint, injection, leak, LLM, malicious, monitoring, openai, phishing, unauthorized, vulnerability

Conversation injection and stealthy data exfiltration: Because ChatGPT receives output from SearchGPT after the search model processes content, Tenable’s researchers wondered what would happen if SearchGPT’s response itself contained a prompt injection. In other words, could they use a website to inject a prompt that instructs SearchGPT to inject a different prompt into ChatGPT, effectively…
ChatGPT und Google-Suche: Private KI-Prompts in Google Search Console gefunden

Nov 8, 2025 3:19 PM

Tags: ai, chatgpt, google, openai

Der Verdacht, dass OpenAI die Google-Suche für ChatGPT-Anfragen verwendet, wird durch diese Erkenntnisse erhärtet. First seen on golem.de Jump to article: www.golem.de/news/chatgpt-und-google-suche-private-ki-prompts-in-google-search-console-gefunden-2511-201985.html
ChatGPT und Google-Suche: Private KI-Prompts in Google Search Console gefunden

Nov 8, 2025 3:19 PM

Tags: ai, chatgpt, google, openai

Der Verdacht, dass OpenAI die Google-Suche für ChatGPT-Anfragen verwendet, wird durch diese Erkenntnisse erhärtet. First seen on golem.de Jump to article: www.golem.de/news/chatgpt-und-google-suche-private-ki-prompts-in-google-search-console-gefunden-2511-201985.html
9 top bug bounty programs launched in 2025

Nov 7, 2025 2:20 PM

Tags: ai, api, apple, attack, best-practice, browser, bug-bounty, chatgpt, chrome, cloud, computer, corporate, cyber, cybersecurity, data, defense, exploit, finance, flaw, framework, google, government, hacker, hacking, healthcare, identity, infrastructure, injection, intelligence, iphone, macOS, microsoft, mitigation, mobile, nis-2, nvidia, openai, phishing, risk, service, spyware, strategy, technology, theft, threat, unauthorized, update, vulnerability, zero-day

Bug bounty programs focus in 2025: For ethical hackers, best practice for bug bounty hunting in 2025 involves thorough reconnaissance of a target organization’s technology stack, rather than just running automated tools.Leading bug bounty platforms such as Bugcrowd, HackerOne, Synack, YesWeHack, and Intigriti offer rewards for identifying and reporting security vulnerabilities. Platforms connect ethical hackers…
9 top bug bounty programs launched in 2025

Nov 7, 2025 2:20 PM

Tags: ai, api, apple, attack, best-practice, browser, bug-bounty, chatgpt, chrome, cloud, computer, corporate, cyber, cybersecurity, data, defense, exploit, finance, flaw, framework, google, government, hacker, hacking, healthcare, identity, infrastructure, injection, intelligence, iphone, macOS, microsoft, mitigation, mobile, nis-2, nvidia, openai, phishing, risk, service, spyware, strategy, technology, theft, threat, unauthorized, update, vulnerability, zero-day

Bug bounty programs focus in 2025: For ethical hackers, best practice for bug bounty hunting in 2025 involves thorough reconnaissance of a target organization’s technology stack, rather than just running automated tools.Leading bug bounty platforms such as Bugcrowd, HackerOne, Synack, YesWeHack, and Intigriti offer rewards for identifying and reporting security vulnerabilities. Platforms connect ethical hackers…
9 top bug bounty programs launched in 2025

Nov 7, 2025 2:20 PM

Tags: ai, api, apple, attack, best-practice, browser, bug-bounty, chatgpt, chrome, cloud, computer, corporate, cyber, cybersecurity, data, defense, exploit, finance, flaw, framework, google, government, hacker, hacking, healthcare, identity, infrastructure, injection, intelligence, iphone, macOS, microsoft, mitigation, mobile, nis-2, nvidia, openai, phishing, risk, service, spyware, strategy, technology, theft, threat, unauthorized, update, vulnerability, zero-day

Bug bounty programs focus in 2025: For ethical hackers, best practice for bug bounty hunting in 2025 involves thorough reconnaissance of a target organization’s technology stack, rather than just running automated tools.Leading bug bounty platforms such as Bugcrowd, HackerOne, Synack, YesWeHack, and Intigriti offer rewards for identifying and reporting security vulnerabilities. Platforms connect ethical hackers…
9 top bug bounty programs launched in 2025

Nov 7, 2025 2:20 PM

Tags: ai, api, apple, attack, best-practice, browser, bug-bounty, chatgpt, chrome, cloud, computer, corporate, cyber, cybersecurity, data, defense, exploit, finance, flaw, framework, google, government, hacker, hacking, healthcare, identity, infrastructure, injection, intelligence, iphone, macOS, microsoft, mitigation, mobile, nis-2, nvidia, openai, phishing, risk, service, spyware, strategy, technology, theft, threat, unauthorized, update, vulnerability, zero-day

Bug bounty programs focus in 2025: For ethical hackers, best practice for bug bounty hunting in 2025 involves thorough reconnaissance of a target organization’s technology stack, rather than just running automated tools.Leading bug bounty platforms such as Bugcrowd, HackerOne, Synack, YesWeHack, and Intigriti offer rewards for identifying and reporting security vulnerabilities. Platforms connect ethical hackers…
9 top bug bounty programs launched in 2025

Nov 7, 2025 2:20 PM

Tags: ai, api, apple, attack, best-practice, browser, bug-bounty, chatgpt, chrome, cloud, computer, corporate, cyber, cybersecurity, data, defense, exploit, finance, flaw, framework, google, government, hacker, hacking, healthcare, identity, infrastructure, injection, intelligence, iphone, macOS, microsoft, mitigation, mobile, nis-2, nvidia, openai, phishing, risk, service, spyware, strategy, technology, theft, threat, unauthorized, update, vulnerability, zero-day

Bug bounty programs focus in 2025: For ethical hackers, best practice for bug bounty hunting in 2025 involves thorough reconnaissance of a target organization’s technology stack, rather than just running automated tools.Leading bug bounty platforms such as Bugcrowd, HackerOne, Synack, YesWeHack, and Intigriti offer rewards for identifying and reporting security vulnerabilities. Platforms connect ethical hackers…
9 top bug bounty programs launched in 2025

Nov 7, 2025 2:20 PM

Tags: ai, api, apple, attack, best-practice, browser, bug-bounty, chatgpt, chrome, cloud, computer, corporate, cyber, cybersecurity, data, defense, exploit, finance, flaw, framework, google, government, hacker, hacking, healthcare, identity, infrastructure, injection, intelligence, iphone, macOS, microsoft, mitigation, mobile, nis-2, nvidia, openai, phishing, risk, service, spyware, strategy, technology, theft, threat, unauthorized, update, vulnerability, zero-day

Bug bounty programs focus in 2025: For ethical hackers, best practice for bug bounty hunting in 2025 involves thorough reconnaissance of a target organization’s technology stack, rather than just running automated tools.Leading bug bounty platforms such as Bugcrowd, HackerOne, Synack, YesWeHack, and Intigriti offer rewards for identifying and reporting security vulnerabilities. Platforms connect ethical hackers…
ChatGPT Bugs Put Private Data at Risk

Nov 6, 2025 9:19 PM

Tags: chatgpt, data, flaw, injection, risk, theft

Tenable found seven ChatGPT flaws that enable stealthy data theft through chained prompt injection attacks. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/artificial-intelligence/new-chatgpt-vulnerabilities-data-privacy/
New ChatGPT Vulnerabilities Let Hackers Steal Data, Hijack Memory

Nov 6, 2025 6:19 PM

Tags: chatgpt, data, hacker, injection, vulnerability

Seven vulnerabilities in ChatGPT (including GPT-5) allow attackers to use ‘0-click’ and ‘memory injection’ to bypass safety features and persistently steal private user data and chat history. Tenable Research exposes the flaws. First seen on hackread.com Jump to article: hackread.com/chatgpt-vulnerabilities-hackers-hijack-memory/
New ChatGPT Vulnerabilities Let Hackers Steal Data, Hijack Memory

Nov 6, 2025 6:19 PM

Tags: chatgpt, data, hacker, injection, vulnerability

Seven vulnerabilities in ChatGPT (including GPT-5) allow attackers to use ‘0-click’ and ‘memory injection’ to bypass safety features and persistently steal private user data and chat history. Tenable Research exposes the flaws. First seen on hackread.com Jump to article: hackread.com/chatgpt-vulnerabilities-hackers-hijack-memory/
Multiple ChatGPT Security Bugs Allow Rampant Data Theft

Nov 6, 2025 11:19 AM

Tags: chatgpt, data, malicious, theft

Attackers can use them to inject arbitrary prompts, exfiltrate personal user information, bypass safety mechanisms, and take other malicious actions. First seen on darkreading.com Jump to article: www.darkreading.com/application-security/multiple-chatgpt-security-bugs-rampant-data-theft
Schwachstelle im KI-Browser von OpenAI – Sicherheitslücke in ChatGPT Atlas erlaubt Übernahme von Nutzerkonten

Nov 6, 2025 8:19 AM

Tags: ai, bug, chatgpt, openai, vulnerability

First seen on security-insider.de Jump to article: www.security-insider.de/sicherheitsluecke-chatgpt-atlas-warnung-a-e76b68af32bfe9fdc512ab7b0253c62c/
Schwachstelle im KI-Browser von OpenAI – Sicherheitslücke in ChatGPT Atlas erlaubt Übernahme von Nutzerkonten

Nov 6, 2025 8:19 AM

Tags: ai, bug, chatgpt, openai, vulnerability

First seen on security-insider.de Jump to article: www.security-insider.de/sicherheitsluecke-chatgpt-atlas-warnung-a-e76b68af32bfe9fdc512ab7b0253c62c/
HackedGPT: New Vulnerabilities in GPT Models Allow Attackers to Launch 0-Click Attacks

Nov 6, 2025 7:19 AM

Tags: attack, chatgpt, cyber, cybersecurity, data, flaw, malicious, openai, vulnerability

Cybersecurity researchers at Tenable have uncovered a series of critical vulnerabilities in OpenAI’s ChatGPT that could allow malicious actors to steal private user data and launch attacks without any user interaction. The security flaws affect hundreds of millions of users who interact with large language models daily, raising significant concerns about the safety of AI.…