The bug was found within the Redis shopper open-source library known as redis-py.
The firm mentioned it has reached out to inform affected customers that their cost data might have been uncovered.
OpenAI, the creator of ChatGPT, has admitted that some customers’ cost data might have been uncovered earlier this week when it took ChatGPT offline owing to a bug.
According to the corporate, the Microsoft-owned firm took ChatGPT offline attributable to a bug in an open-source library which allowed some customers to see titles from one other lively consumer’s chat historical past.
“It was additionally doable that the primary message of a newly-created dialog was seen in another person’s chat historical past if each customers have been lively across the similar time,” said the company.
The bug has been patched and ChatGPT service and its chat history feature, with the exception of a few hours of history, have been restored.
However, upon deeper investigation, OpenAI discovered that the same bug may have caused the unintentional visibility of “payment-related information of 1.2 per cent of the ChatGPT Plus subscribers who were active during a specific nine-hour window”.
“In the hours earlier than we took ChatGPT offline, it was doable for some customers to see one other lively consumer’s first and final identify, electronic mail deal with, cost deal with, the final 4 digits (solely) of a bank card quantity, and bank card expiration date. Full bank card numbers weren’t uncovered at any time,” the company revealed.
Due to the bug, some subscription confirmation emails generated during that window were sent to the wrong users.
These emails contained the last four digits of another users’ credit card number, but full credit card numbers did not appear.
“It’s possible that a small number of subscription confirmation emails might have been incorrectly addressed prior to March 20, although we have not confirmed any instances of this,” OpenAI additional mentioned.
The firm mentioned it has reached out to inform affected customers that their cost data might have been uncovered.
“We are assured that there is no such thing as a ongoing threat to customers’ knowledge,” it added, apologising again to users and to the entire ChatGPT community.
The bug was discovered in the Redis client open-source library called “redis-py”.
Read all of the Latest Tech News right here
(This story has been edited by News18 workers and is revealed from a syndicated news company feed)
Source web site: www.news18.com
