OpenAI has alerted users about a potential data exposure following a cyberattack on analytics firm Mixpanel. The breach, stemming from a smishing attack detected on November 8, 2025, reportedly affected user profile details linked to OpenAI’s platform, though sensitive data such as ChatGPT conversations, API keys, and payment information remains secure. Mixpanel reassured users that its systems were compromised but has since taken extensive measures to secure accounts, including revoking active sessions and performing global password resets for employees. The company’s incident response involved engaging external cybersecurity partners for containment and remediation while implementing new controls to prevent future breaches. OpenAI has proactively removed Mixpanel from its services, reviewed affected datasets, and is notifying impacted organizations and users. Those who received notifications should follow provided instructions, while others can rest assured they weren’t affected. Continuous monitoring for misuse is ongoing.
Source link
Share
Read more