OpenAI Says China-Linked Group Tried to Phish Its Employees (yahoo.com) 21
OpenAI said a group with apparent ties to China tried to carry out a phishing attack on its employees, reigniting concerns that bad actors in Beijing want to steal sensitive information from top US artificial intelligence companies. From a report: The AI startup said Wednesday that a suspected China-based group called SweetSpecter posed as a user of OpenAI's chatbot ChatGPT earlier this year and sent customer support emails to staff. The emails included malware attachments that, if opened, would have allowed SweetSpecter to take screenshots and exfiltrate data, OpenAI said, but the attempt was unsuccessful.
"OpenAI's security team contacted employees who were believed to have been targeted in this spear phishing campaign and found that existing security controls prevented the emails from ever reaching their corporate emails," OpenAI said. The disclosure highlights the potential cybersecurity risks for leading AI companies as the US and China are locked in a high-stakes battle for artificial intelligence supremacy. In March, for example, a former Google engineer was charged with stealing AI trade secrets for a Chinese firm.
"OpenAI's security team contacted employees who were believed to have been targeted in this spear phishing campaign and found that existing security controls prevented the emails from ever reaching their corporate emails," OpenAI said. The disclosure highlights the potential cybersecurity risks for leading AI companies as the US and China are locked in a high-stakes battle for artificial intelligence supremacy. In March, for example, a former Google engineer was charged with stealing AI trade secrets for a Chinese firm.
nothing new (Score:5, Insightful)
Re: (Score:2)
Re: (Score:2)
I came here to make almost the same comment. Similar thing happened to me at a chip firm two decades ago.
Me too, China and others phishes everybody at large. I know since I run some mail servers and mail filters with several users.
Re: (Score:3)
The biggest self-own of the 21st century is how the democratic, free world built up their two main rivals that seek to undermine, divide, outmaneuver, and ultimately destroy them: Russia and China.
By buying their energy (Russia) and exporting our manufacturing and tech to those countries (China). China has been so ruthless in stealing technology and capabilities, while hugely subsidizing key industries, destroying incumbent companies in the West, it's an utter and complete policy failure that there has been
Re: nothing new (Score:2)
Actually the problem with China was allowing them into the WTO while also allowing them to blatantly ignore all of the rules.
Re: (Score:2)
Yes! There would be a thousand arguments for throwing them out. Unfortunately China is exerting alot of "influence" on these international organizations like WTO and WHO, which probably means money payments, corruption... but that is hard to prove. Also you always hear the tired old argument that Western companies are afraid of losing access to the big, Chinese market. Not realizing the obvious that China is assimilating the tech through forced partnerships, embracing the foreign companies until it is ready
Re: nothing new (Score:2)
My first sysadmin job was nearly 30 years ago. I worked for Silicon Engineering, nee Sequoia Semiconductor. At that time China had already been delidding and reverse engineering silicon for a decade or more, and was also suspected of actual assaults on technical facilities (like with armed groups with automatic weapons) including Seagate (where I knew some people who told me about being attacked for prototypes.) not sure how that investigation came out.
Re: (Score:2)
Reads a lot like "Oceania has always been at war with Eastasia."
OpenAI employees are probably the hardest to phish (Score:1)
If anybody can smell bullshit and fakery from a mile away, it's people who work on ChatGPT.
Re: (Score:2)
If anybody can smell bullshit and fakery from a mile away, it's people who work on ChatGPT.
Is that supposed to be ironic? These days, ChatGPT is the main source of bullshit and fakery.
Re: OpenAI employees are probably the hardest to p (Score:2)
No, google's gemini is much worse, and now basically everybody who uses google uses gemini. Sure, it's easy to block it with a ublock filter, but even people with ublock installed probably won't.
Easy Fixi (Score:1)
Just flood the model with "Tankman", "Nation of Taiwan", and "Xi the Pooh" so that they corrupt their copy of the model trying to "clean" it.
Me too (Score:4, Interesting)
Bah (Score:3)
It must be a day ending in 'y' (Score:4, Funny)
On what day of the week/month/year does anyone believe China is not trying to get information on U.S. companies?
If you're such a big target of spearphishing... (Score:2)
... then it's probably time to think about setting up honeypots.
Let them exfitrate the data. The wrong data. Data that looks right and will take them a long time to learn that it's not, after significant wasted effort.
Phishing (Score:2)
So they are using jam bands to steal info?
Never workflow external docs via email (Score:3)
people be like that (Score:1)