OpenAI Says China-Linked Group Tried to Phish Its Employees (yahoo.com)
(Wednesday October 09, 2024 @11:20AM (msmash)
from the tussle-continues dept.)
- Reference: 0175220329
- News link: https://it.slashdot.org/story/24/10/09/1515226/openai-says-china-linked-group-tried-to-phish-its-employees
- Source link: https://finance.yahoo.com/news/openai-says-china-linked-group-103027618.html
OpenAI said a group with apparent ties to China tried to [1]carry out a phishing attack on its employees , reigniting concerns that bad actors in Beijing want to steal sensitive information from top US artificial intelligence companies. From a report:
> The AI startup said Wednesday that a suspected China-based group called SweetSpecter posed as a user of OpenAI's chatbot ChatGPT earlier this year and sent customer support emails to staff. The emails included malware attachments that, if opened, would have allowed SweetSpecter to take screenshots and exfiltrate data, OpenAI said, but the attempt was unsuccessful.
>
> "OpenAI's security team contacted employees who were believed to have been targeted in this spear phishing campaign and found that existing security controls prevented the emails from ever reaching their corporate emails," OpenAI said. The disclosure highlights the potential cybersecurity risks for leading AI companies as the US and China are locked in a high-stakes battle for artificial intelligence supremacy. In March, for example, a former Google engineer was charged with stealing AI trade secrets for a Chinese firm.
[1] https://finance.yahoo.com/news/openai-says-china-linked-group-103027618.html
> The AI startup said Wednesday that a suspected China-based group called SweetSpecter posed as a user of OpenAI's chatbot ChatGPT earlier this year and sent customer support emails to staff. The emails included malware attachments that, if opened, would have allowed SweetSpecter to take screenshots and exfiltrate data, OpenAI said, but the attempt was unsuccessful.
>
> "OpenAI's security team contacted employees who were believed to have been targeted in this spear phishing campaign and found that existing security controls prevented the emails from ever reaching their corporate emails," OpenAI said. The disclosure highlights the potential cybersecurity risks for leading AI companies as the US and China are locked in a high-stakes battle for artificial intelligence supremacy. In March, for example, a former Google engineer was charged with stealing AI trade secrets for a Chinese firm.
[1] https://finance.yahoo.com/news/openai-says-china-linked-group-103027618.html
OpenAI employees are probably the hardest to phish (Score:2)
by Rosco P. Coltrane ( 209368 )
If anybody can smell bullshit and fakery from a mile away, it's people who work on ChatGPT.
Easy Fixi (Score:1)
by Tablizer ( 95088 )
Just flood the model with "Tankman", "Nation of Taiwan", and "Xi the Pooh" so that they corrupt their copy of the model trying to "clean" it.
Me too (Score:2)
by CEC-P ( 10248912 )
Yeah, blocked about 15 this morning because I'm on office 365 admin maintenance duties this week. You aint special. We got a fake USDA request for bid campaign using a fake "gov.us" domain ending that I just eliminated with KQL.
Bah (Score:2)
by buck-yar ( 164658 )
Who doesn't get these types of attempts? Maybe a little more directed because of their prominence, but would it make news if someone did this to Microsoft or Google? This seems expected and par for the course.
nothing new (Score:3)
china has been attacking us for at least two decades, maybe longer
Re: (Score:2)
I came here to make almost the same comment. Similar thing happened to me at a chip firm two decades ago.