Over 100,000 Stolen ChatGPT Account Credentials Sold on Dark Web Marketplaces

wave_walnut@kbin.social to Technology@kbin.social – 45 points – Over 100,000 Stolen ChatGPT Account Credentials Sold on Dark Web Marketplaces
thehackernews.com

Over 100,000 OpenAI ChatGPT account credentials have been compromised and sold on the dark web. Cybercriminals are targeting the valuable information.

23

If you don't already have an OpenAI account, don't make one. You don't need it. There are several other ways to access it without an accounts. Shamelessly stolen from Reddit:

No Sign-Up:

Perplexity AI [https://www.perplexity.ai/] (web-browsing)

Vitalentum [https://vitalentum.net/free-gpt]

OraChat [https://ora.ai/chatbot-master/openai-chatgpt-chatbot]

Vicuna [https://chat.lmsys.org/]

GPTGO [https://gptgo.ai/] (web-browsing)

AnonChatGPT [https://anonchatgpt.com/]

NoowAI [https://noowai.com/]

Character AI [https://beta.character.ai/]

BAI Chat [https://chatbot.theb.ai/]

iAsk AI [https://iask.ai/] (web-browsing)

Phind AI [https://www.phind.com/] (web-browsing)

GPT4All [https://gpt4all.io/index.html] (open-source) [suggested by u/CondiMesmer]

DeepAI Chat [https://deepai.org/chat]

Teach Anything [https://www.teach-anything.com/]

Forefront AI [https://chat.forefront.ai/]

Sign-Up:

Poe AI [https://poe.com/ChatGPT]

Bard [https://bard.google.com/] (web-browsing)

Easy-Peasy AI [https://easy-peasy.ai/]

HuggingChat [https://huggingface.co/chat] (web-browsing)

WriteSonic [https://app.writesonic.com/chat]

FlowGPT [https://flowgpt.com/chat]

Sincode AI [https://www.sincode.ai/]

AI.LS [https://ai.ls/]

LetsView Chat [https://letsview.com/chatbot] (only 10 messages allowed)

CapeChat [https://chat.capeprivacy.com/]

Open-Assistant [https://open-assistant.io/] (open-source)

GlobalGPT [https://www.globalgpt.nspiketech.com/]

Bing Chat [bing.com/chat]

JimmyGPT [https://www.jimmygpt.com/]

Codeium [https://codeium.com/] *mainly for coding*

YouChat [you.com/chat]

Frank AI [https://franks.ai/]

OpenAI Playground [platform.openai.com/playground]

Great For Blog Articles (with chatbot):

Copy AI [https://app.copy.ai/]

TextCortex AI [https://app.textcortex.com/]

Marmof [https://app.marmof.com/]

HyperWrite [https://app.hyperwriteai.com/chatbot]

WriterX [https://app.writerx.co/]

Best File Chatbots (PDF's, etc.):

AnySummary [https://www.anysummary.app/] (3 per day)

Sharly AI [https://app.sharly.ai/]

Documind [https://www.documind.chat/]

ChatDOC [https://chatdoc.com/]

Humata AI [https://app.humata.ai/]

Ask Your PDF [https://askyourpdf.com/]

ChatPDF [https://www.chatpdf.com/]

FileGPT [https://filegpt.app/chat]

ResearchAide [https://www.researchaide.org/]

Pensieve AI [https://pensieve-app.springworks.in/]

Docalysis [https://docalysis.com/] (suggested by u/upsontown)

Best Personal Assistant Chatbots:

Pi, your personal AI [https://heypi.com/talk]

Kuki AI [https://chat.kuki.ai/]

Replika [https://replika.com/]

YourHana AI [https://yourhana.ai/]

Thanks for these, I can finally give it a try!

One of these stands out, the GPT4All project. Do you know how does this even work, it's locally installed and no internet required? Isn't the model running GPT4 absolutely huge and proprietary closed code? There is a short summary of what it is on the page but it doesn't really answer anything...

1 more...

ChatGPT itself has not been hacked nor has OpenAI, mainly that fraudsters are obtaining ChatGPT logins by other means. Use 2FA

Use different passwords for every single website, whether through the use of a password manager or otherwise.

This is even more important to do than 2FA.

And different usernames/emails also. (Apple relay, Firefox Relay, SimpleLogin, etc.)

But DON'T store your 2FA tokens in your password manager. I don't understand why even the most reputable password managers allow this. If your 2FA is stored inside your password manager, you only have 1FA.

Yeah definitely, have a password manager and big unique passwords for absolutely everything. Just good to use 2FA if it's available

@Senseibu 2FA doesn't seem to be an option for me, I've checked the settings in both Firefox and Chrome.. I've logged out and back in again. Refreshed cache etc.

Any ideas?

Use a google or Microsoft account for your 2FA in that case, that’s what I do and have 2FA there

Considering OpenAI is asking for your phone number to sign up for an account, it's not hard for the stolen accounts to be linked to the owners.

This is the reason i have not signed up

Same, I was really tempted and even tried to find some "generate fake phone number" sites but surprisingly couldn't find any. I really want to give it a try and join the fun everyone's having but I'm not giving my phone number away just like that.

Unfortunately these companies have caught on to the fake phone number workaround and don't allow VoIP numbers anymore. Fucking shame on them. There are dozens of other ways to verify legitimate users that don't require giving out personal information for no reason.

Same here, I will never give any website my phone number, not even for 2fa.

For a normal account or paying account? I never had to enter my phone number anywhere

Maybe it depends on the country, but I had to give them my phone number to register.

Hm maybe they changed it as well, I registered quite early on