The details of the incident go back to a breach that targeted “Mixpanel,” a third-party analytics provider used by “OpenAI” to track activity on the API dashboard, not on the main “ChatGPT” product.
“OpenAI” explained that sending this warning comes as part of its commitment to a policy of transparency, even though the data at risk concerns only a limited group of “API” users. The company confirmed that this incident did not affect “OpenAI’s” internal systems and did not touch conversation logs, passwords, API keys, or payment information and any sensitive personal data.
The data that may have appeared in “Mixpanel” logs is limited to the names of “API” user accounts, registered email addresses, approximate location based on browser data, operating system and browser information, referring sites, and internal user or organization identifiers.
The company announced that it has removed “Mixpanel” from all production systems and has begun a comprehensive investigation to determine the extent of the breach, and has contacted the organizations and supervisors concerned to assess any potential impact.
This widespread alert aims to prevent any confusion and limit the spread of inaccurate information, especially since some may confuse different “OpenAI” products.
The company confirms that regular “ChatGPT” users, whether through the application or the website, are not exposed to any risks. (اليوم السابع)
