OpenAI API user data exposed in Mixpanel security breach
14 days ago
- #security
- #OpenAI
- #data-breach
- OpenAI confirmed a security incident involving Mixpanel, a third-party analytics provider used for its API frontend.
- The breach was on Mixpanel's systems, not OpenAI's infrastructure, exposing limited user data.
- Exposed data included names, email addresses, approximate locations, OS/browser info, referring websites, and organization/user IDs.
- ChatGPT and other OpenAI products were not affected; no credentials, API keys, or payment details were compromised.
- OpenAI terminated its use of Mixpanel and is notifying affected users while monitoring for misuse.
- Users are advised to be cautious of phishing attempts, verify official communications, and enable MFA.
- No password or API key resets are required as these were not exposed.