Tag: openai
-
ChatGPT API flaws could allow DDoS, prompt injection attacks
OpenAI-owned ChatGPT might have a vulnerability that could allow threat actors to launch distributed denial of service (DDoS) attacks on unsuspecting targets. According to a discovery made by German security researcher Benjamin Flesch, the ChatGPT crawler, which OpenAI uses to collect data from the internet to improve ChatGPT, can be tricked into DDoSing arbitrary websites. “ChatGPT crawler…
-
ChatGPT Crawler Vulnerability Abused to Trigger Reflexive DDoS Attacks
Security researchers have uncovered a severe vulnerability in OpenAI’s ChatGPT API, allowing attackers to exploit its architecture for launching Reflective Distributed Denial of Service (DDoS) attacks. This loophole, characterized by a high severity CVSS score of 8.6, raises significant concerns regarding the scalability and security of AI services deployed on cloud platforms, specifically Microsoft’s Azure.…
-
OpenAI’s ChatGPT crawler can be tricked into DDoSing sites, answering your queries
The S in LLM stands for Security First seen on theregister.com Jump to article: www.theregister.com/2025/01/19/openais_chatgpt_crawler_vulnerability/
-
OpenAI faces backlash for its Economic Blueprint for U.S.
The document lays out steps for the future regarding AI technology. Some call the move self-serving and another piece of the vendor’s strategy to win the AI race. First seen on techtarget.com Jump to article: www.techtarget.com/searchenterpriseai/news/366617978/OpenAI-faces-backlash-for-its-Economic-Blueprint-for-US
-
Microsoft sues overseas threat actor group over abuse of OpenAI service
Microsoft has filed suit against 10 unnamed people (“Does”), who are apparently operating overseas, for misuse of its Azure OpenAI platform, asking the Eastern District of Virginia federal court for damages and injunctive relief.The suit was filed in late December but was not made public until last Friday, when the initial sealed filings were revealed.…
-
Microsoft Sues Hackers Over Alleged Use Of Breached Azure OpenAI Services
First seen on scworld.com Jump to article: www.scworld.com/brief/microsoft-sues-hackers-over-alleged-use-of-breached-azure-openai-services
-
Microsoft took legal action against crooks who developed a tool to abuse its AI-based services
In December, Microsoft sued a group for creating tools to bypass safety measures in its cloud AI products. Microsoft filed a complaint with the Eastern District Court of Virginia against ten individuals for using stolen credentials and custom software to breach computers running Microsoft’s Azure OpenAI services to generate content for harmful purposes. >>Defendants used…
-
Microsoft moves to disrupt hacking-as-a-service scheme that’s bypassing AI safety measures
The defendants used stolen API keys to gain access to devices and accounts with Microsoft’s Azure OpenAI service, which they then used to generate “thousands” of images that violated content restrictions. First seen on cyberscoop.com Jump to article: cyberscoop.com/microsoft-generative-ai-lawsuit-hacking/
-
Microsoft moves to disrupt hacking-as-a-service scheme that’s bypassing AI safety measures
The defendants used stolen API keys to gain access to devices and accounts with Microsoft’s Azure OpenAI service, which they then used to generate “thousands” of images that violated content restrictions. First seen on cyberscoop.com Jump to article: cyberscoop.com/microsoft-generative-ai-lawsuit-hacking/
-
Gen AI is transforming the cyber threat landscape by democratizing vulnerability hunting
Tags: ai, api, apt, attack, bug-bounty, business, chatgpt, cloud, computing, conference, credentials, cve, cyber, cybercrime, cyberespionage, cybersecurity, data, defense, detection, email, exploit, finance, firewall, flaw, framework, github, government, group, guide, hacker, hacking, incident response, injection, LLM, malicious, microsoft, open-source, openai, penetration-testing, programming, rce, RedTeam, remote-code-execution, service, skills, software, sql, tactics, threat, tool, training, update, vulnerability, waf, zero-dayGenerative AI has had a significant impact on a wide variety of business processes, optimizing and accelerating workflows and in some cases reducing baselines for expertise.Add vulnerability hunting to that list, as large language models (LLMs) are proving to be valuable tools in assisting hackers, both good and bad, in discovering software vulnerabilities and writing…
-
‘Bad Likert Judge’ Jailbreak Bypasses Guardrails of OpenAI, Other Top LLMs
A novel technique to stump artificial intelligence (AI) text-based systems increases the likelihood of a successful cyberattack by 60%. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/bad-likert-judge-jailbreak-bypasses-guardrails-openai-other-llms
-
Safety Concerns, Pushback Against OpenAI’s For-Profit Plan
Opponents Say Restructuring Will Undermine OpenAI’s Security Commitments. OpenAI’s attempt to convert to a for-profit company is facing opposition from competitors and artificial intelligence safety activists, who argue that the transition would undermine the tech giant’s commitment to secure AI development and deployment. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/safety-concerns-pushback-against-openais-for-profit-plan-a-27193
-
Unpacking OpenAI’s Latest Approach to Make AI Safer
New Framework in o3 Models Aims to Better Align With Human Safety Values. OpenAI says its latest o3 series is the most advanced and safest of its reasoning AI models yet. The company says the new models take a fresh approach to safety via the deliberative alignment framework, rely more on synthetic data and outperform…
-
Italy’s data protection watchdog fined OpenAI Euro15 million over ChatGPT’s data management violations
Italy’s data protection watchdog fined OpenAI Euro15 million for ChatGPT’s improper collection of personal data. Italy’s privacy watchdog, Garante Privacy, fined OpenAI Euro15M after investigating ChatGPT’s personal data collection practices. The Italian Garante Priacy also obliges OpenAI to conduct a six-month informational campaign over ChatGPT’s data management violations. The decision stems from a March 2023…
-
Italy’s Privacy Watchdog Fines OpenAI for ChatGPT’s Violations in Collecting Users Personal Data
Italy’s data protection watchdog fined OpenAI 15 million euros ($15.6 million) after wrapping up a probe into collection of personal data. The post Italy’s Privacy Watchdog Fines OpenAI for ChatGPT’s Violations in Collecting Users Personal Data appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/italys-privacy-watchdog-fines-openai-for-chatgpts-violations-in-collecting-users-personal-data/
-
Italy Fines OpenAI Euro15 Million for ChatGPT GDPR Data Privacy Violations
Italy’s data protection authority has fined ChatGPT maker OpenAI a fine of Euro15 million ($15.66 million) over how the generative artificial intelligence application handles personal data.The fine comes nearly a year after the Garante found that ChatGPT processed users’ information to train its service in violation of the European Union’s General Data Protection Regulation (GDPR).The…
-
Italy’s Data Protection Watchdog Issues Euro15m Fine to OpenAI Over ChatGPT Probe
OpenAI must also initiate a six-month public awareness campaign across Italian media, explaining how it processes personal data for AI training First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/italy-15m-fine-to-openai-chatgpt/
-
Sora and ChatGPT Currently Down Worldwide (UPDATED)
You are not alone, ChatGPT and Sora AI are down worldwide. OpenAI says it is aware of the… First seen on hackread.com Jump to article: hackread.com/sora-chatgpt-down-worldwide-openai-working-on-fix/
-
Sora and ChatGPT Currently Down Worldwide: OpenAI Working on a Fix
You are not alone, ChatGPT and Sora AI are down worldwide. OpenAI says it is aware of the… First seen on hackread.com Jump to article: hackread.com/sora-chatgpt-down-worldwide-openai-working-on-fix/
-
Künstliche Intelligenz: OpenAIs o1-Modell überrascht KI-Forscher bei Sicherheitstest
OpenAIs neues KI-Modell o1 soll bei einem Sicherheitstest die Forscher besonders gut getäuscht haben. First seen on golem.de Jump to article: www.golem.de/news/kuenstliche-intelligenz-openais-o1-modell-soll-forscher-hintergangen-haben-2412-191576.html
-
OpenAI’s Sora: Everything You Need to Know
ChatGPT Plus and Pro users now have access to Sora Turbo, intended to be faster and safer than the version shown in February. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/sora-generative-ai-video/
-
Künstliche Intelligenz: OpenAIs o1-Modell soll Forscher ausgetrickst haben
OpenAIs neues KI-Modell o1 soll bei Sicherheitstests alles versucht haben, um einer möglichen Löschung zu entgehen. First seen on golem.de Jump to article: www.golem.de/news/kuenstliche-intelligenz-openais-o1-modell-soll-forscher-hintergangen-haben-2412-191576.html
-
Künstliche Intelligenz: OpenAIs o1-Modell soll Forscher hintergangen haben
OpenAIs neues KI-Modell o1 soll bei Sicherheitstests die Forscher hintergangen haben, um einer möglichen Löschung zu entgehen. First seen on golem.de Jump to article: www.golem.de/news/kuenstliche-intelligenz-openais-o1-modell-soll-forscher-hintergangen-haben-2412-191576.html
-
Trust Issues in AI
For a technology that seems startling in its modernity, AI sure has a long history. Google Translate, OpenAI chatbots, and Meta AI image generators are built on decades of advancements in linguistics, signal processing, statistics, and other fields going back to the early days of computing”, and, often, on seed funding from the U.S. Department…
-
OpenAI inks deal to upgrade Anduril’s anti-drone tech
OpenAI plans to team up with Anduril, the defense startup, to supply its AI tech to systems the U.S. military uses to counter drone attacks. The Wall Street Journal reports that Anduril will incorporate OpenAI tech into software that assesses and tracks unmanned aircraft. Anduril tells the publication that OpenAI’s models could improve the accuracy…
-
Check Point Infinity AI Copilot kooperiert mit Microsoft Azure OpenAI Service
Diese Zusammenarbeit entwickelt nicht nur das Sicherheitsmanagement weiter, sondern verbessert auch den gesamten Sicherheitsrahmen, um einen umfassend… First seen on infopoint-security.de Jump to article: www.infopoint-security.de/check-point-infinity-ai-copilot-kooperiert-mit-microsoft-azure-openai-service/a36899/
-
ChatGPT zum Schreiben von Malware missbraucht
OpenAI hat bestätigt, dass Cyberkriminelle den KI-Chatbot ChatGPT zum Schreiben und Verbessern von Malware missbraucht haben. Mehr als 20 derartige Op… First seen on 8com.de Jump to article: www.8com.de/cyber-security-blog/chatgpt-zum-schreiben-von-malware-missbraucht
-
Elektronische Patientenakte (ePA): Hebt Lauterbach mit Meta, OpenAI und Google den Datenschatz
Meine schlimmsten Befürchtungen im Hinblick auf den “staatlichen Missbrauch” der per elektronischer Patientenakte gesammelten Gesundheitsdaten gesetzlich Krankenversicherter in Deutschland scheinen sich zu bestätigen. Hieß es bei Verabschiedung der entsprechenden Gesundheitsgesetze noch “wir wollen Daten für die Forschung und ggf. Pharma-Industrie”, … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/11/29/elektronische-patientenakte-epa-hebt-lauterbach-mit-meta-openai-und-google-den-datenschatz/
-
China’s DeepSeek Aims to Rival OpenAI’s ‘Reasoning’ Model
DeepSeek-R1 Struggles with Logic Tests and Is Vulnerable to Jailbreaks. Chinese artificial intelligence research company DeepSeek, funded by quantitative trading firms, introduced what it says is one of the first reasoning models to rival OpenAI o1. Reasoning models engage in self-fact checking and perform multi-step reasoning tasks. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/chinas-deepseek-aims-to-rival-openais-reasoning-model-a-26883