OpenAI

3 minute read

Firebase Misconfiguration Exposes 300M Messages From Chat & Ask AI Users

A technical mistake in the popular Chat & Ask AI app has left 300 million private messages from 25 million users exposed online. Discover what happened and how you can protect your personal data when using AI chatbots.

byDeeba Ahmed

February 18, 2026

2 minute read

OpenAI API User Data Exposed in Mixpanel Breach, ChatGPT Unaffected

OpenAI confirmed a third-party data breach via Mixpanel, exposing limited API user metadata like names, emails and browser…

byWaqas

November 27, 2025

2 minute read

Mindgard Finds Sora 2 Vulnerability Leaking Hidden System Prompt via Audio

AI security firm Mindgard discovered a flaw in OpenAI’s Sora 2 model, forcing the video generator to leak…

byDeeba Ahmed

November 12, 2025

New ChatGPT Vulnerabilities Let Hackers Steal Data, Hijack Memory

2 minute read

Security

New ChatGPT Vulnerabilities Let Hackers Steal Data, Hijack Memory

Seven vulnerabilities in ChatGPT (including GPT-5) allow attackers to use '0-click' and 'memory injection' to bypass safety features and persistently steal private user data and chat history. Tenable Research exposes the flaws.

byDeeba Ahmed

November 6, 2025

2 minute read

SesameOp Backdoor Abused OpenAI Assistants API for Remote Access

Microsoft researchers found the SesameOp backdoor using OpenAI’s Assistants API for remote access, data theft, and command communication.

byWaqas

November 4, 2025

3 minute read

‘ChatGPT Tainted Memories’ Exploit Enables Command Injection in Atlas Browser

LayerX Security found a flaw in OpenAI’s ChatGPT Atlas browser that lets attackers inject commands into its memory, posing major security and phishing risks.

byWaqas

October 27, 2025

2 minute read

OpenAI’s Guardrails Can Be Bypassed by Simple Prompt Injection Attack

Just weeks after its release, OpenAI’s Guardrails system was quickly bypassed by researchers. Read how simple prompt injection attacks fooled the system’s AI judges and exposed an ongoing security concern for OpenAI.

byDeeba Ahmed

October 13, 2025

4 minute read

OpenAI Finds Growing Exploitation of AI Tools by Foreign Threat Groups

OpenAI's new report warns hackers are combining multiple AI tools for cyberattacks, scams, and influence ops linked to China, Russia, and North Korea.

byWaqas

October 8, 2025

2 minute read

ShadowLeak Exploit Exposed Gmail Data Through ChatGPT Agent

Radware researchers revealed a service-side flaw in OpenAI's ChatGPT. The ShadowLeak attack had used indirect prompt injection to bypass defences and leak sensitive data, but the issue has since been fixed.

byDeeba Ahmed

September 22, 2025

4 minute read

Leaked ChatGPT Chats: Users Treat AI as Therapist, Lawyer, Confidant

Leaked ChatGPT chats reveal users sharing sensitive data, resumes, and seeking advice on mental health, exposing risks of…

byWaqas

September 2, 2025

The Latest

Hackers Spread Fake Red Alert Rocket Alert App to Spy on Israeli Users

900+ Certificates Used by Fortune 500, Governments Exposed by Key Leaks

Cisco Patches 48 Firewall Vulnerabilities with Two CVSS 10 Flaws

OpenAI

Firebase Misconfiguration Exposes 300M Messages From Chat & Ask AI Users

OpenAI API User Data Exposed in Mixpanel Breach, ChatGPT Unaffected

Mindgard Finds Sora 2 Vulnerability Leaking Hidden System Prompt via Audio

New ChatGPT Vulnerabilities Let Hackers Steal Data, Hijack Memory

SesameOp Backdoor Abused OpenAI Assistants API for Remote Access

‘ChatGPT Tainted Memories’ Exploit Enables Command Injection in Atlas Browser

OpenAI’s Guardrails Can Be Bypassed by Simple Prompt Injection Attack

OpenAI Finds Growing Exploitation of AI Tools by Foreign Threat Groups

ShadowLeak Exploit Exposed Gmail Data Through ChatGPT Agent

Leaked ChatGPT Chats: Users Treat AI as Therapist, Lawyer, Confidant

Reclaim Security Raises $26M to Eliminate the 27-Day Remediation Gap

Archipelo and Checkmarx Announce Partnership Connecting AppSec Detection with DevSPM

Upcoming Opportunities in Space Investment: What to Know About SpaceX

Criminal IP to Present Decision-Ready Threat Intelligence at RSAC™ 2026

Link11 Releases European Cyber Report 2026: DDoS Attacks Become a Constant Threat