A huge problem just hit the AI scene. Popular AI platform OmniGPT, the one that gives you access to ChatGPT-4, Claude 3.5, and others?—has apparently suffered a massive data breach. We’re talking over 30,000 users potentially affected.
The OmniGPT Breach news broke when a user going by “Gloomer” on BreachForums started advertising samples of what they claim is stolen OmniGPT data. Their post is laced with bold claims.
“This leak contains all messages between the users and the chatbot…as well as all links to the files uploaded by users and also 30k user emails,” Gloomer bragged.
This isn’t the first time we’ve heard whispers of this. Security firm KrakenLabs reported a similar incident a couple of weeks ago, linking it to a previous BreachForums post from, you guessed it, a user with the same alias, though a different profile pic.
Gloomer’s earlier post was even more detailed about the OmniGPT hack. They claimed to have “extracted all messages between users and the AI (Over 34 million lines), additionally I also got the emails of 30k users and about 20% of these also come with phone numbers.”
But it gets worse. OmniGPT data breach apparently goes way beyond just emails. We’re talking API keys, credentials, possibly even crypto keys and billing information.
Gloomer practically rubbed it in:
“You can find a lot of useful information in the messages such as API keys and credentials…many of the files uploaded…contain credentials/billing information.”
They even mentioned finding around 130 crypto private keys, though most were apparently low-value.
The implications are huge. Account takeovers, identity theft, phishing scams—the whole shebang. This OmniGPT hack puts users at serious risk. Gloomer is reportedly selling the data dump for a measly $100.
OmniGPT themselves? Radio silence.
Hackread.com reached out for comment, but crickets. If this is confirmed, they’re facing a PR nightmare, not to mention potential legal trouble, especially considering their global user base and data compliance laws like GDPR in Europe.
Hackread.com, a cybersecurity news site, confirmed seeing samples of the stolen data, showing victims from Brazil, Italy, India, Pakistan, China, and Saudi Arabia.
OmniGPT offers a pretty slick interface, aggregating various AI models and adding features like encryption, team tools, and even WhatsApp integration. They have a free tier, but also a $16/month “Plus” membership. This whole situation shows that even seemingly secure platforms can be vulnerable. It’s a wake-up call for everyone.
