100K CHATGPT LOGINS HAVE BEEN LEAKED ON DARK WEB, CYBERSECURITY FIRM WARNS

Last updated: June 19, 2025, 22:07 | Written by: Marc Andreessen

Imagine accessing your favorite AI chatbot, ChatGPT, only to discover that your account has been compromised. From June 2025 through last month, cybersecurity firm Group-IB tracked how many of these for-sale logs expose ChatGPT accounts. In total, it counted 101,134. In total, it counted 101,134.A chilling reality for over 100,000 users, as cybersecurity firm Group-IB has revealed a massive leak of ChatGPT login credentials on the dark web.This breach exposes sensitive information and opens the door to potential fraud, scams, and cyberattacks. 100K ChatGPT Logins Have Been Leaked On Dark Web, Cybersecurity Firm Warns The compromised accounts could give bad actors confidential information about companies and individuals. Over the pastThe sheer scale of this incident underscores the growing threat of infostealer malware and the importance of proactive cybersecurity measures. Over 100,000 ChatGPT accounts have been compromised by malware and put up for sale on the dark web, according to a new report. This means both the account credentials and the contents ofOver the past year, these compromised credentials have been actively traded in illicit online marketplaces, putting both individual users and organizations at significant risk. Security breach of Dark Web Chatbot: The article reports on a recent security breach in Dark Web Chatbot,ChatGPT,which has resulted in the leaked login credentials of over 1.5 million users. Cybersecurity firm Group IB discovered the breach and identified that the chatbot was created using OpenAI s language model GPT-3.This article delves into the details of this breach, explores the potential consequences, and provides actionable steps to safeguard your ChatGPT account and personal data.Understanding the nature of this threat is the first step towards protecting yourself in an increasingly complex digital landscape. Over the past year, more than 100,000 login credentials to the popular artificial intelligence chatbot ChatGPT have been leaked and 100K ChatGPT logins have been leaked on dark web, cybersecurity firm warnsPreferred IT Group, LLC, a complete technology solution provider, also started warning about this breach in 2025, reinforcing the widespread concern across the cybersecurity community.

The ChatGPT Login Leak: A Deep Dive

The recent revelation from Group-IB highlights a significant security breach impacting users of OpenAI's popular ChatGPT chatbot.According to their findings, over 100,000 ChatGPT login credentials have been compromised and made available on the dark web.This represents a major privacy concern and a potential gateway for malicious actors to access sensitive data.

How Were the Credentials Compromised?

The primary culprit behind this massive leak is infostealer malware.These malicious programs are designed to silently collect various types of data from infected devices, including usernames, passwords, cookies, and even credit card information. Over the past year, more than 100,000 login credentials to the popular artificial intelligence chatbot ChatGPT have been leaked and traded on the dark web, according to a Singaporean cybersecurity firm.A June 20 blog post by Group-IB revealed just over 101,000 compromised logins for OpenAI s flagship bot have traded on dark web marketplaces between JuneOnce a device is infected, the infostealer malware harvests the stored credentials and transmits them to the attackers, who then compile and sell them on the dark web.

Infostealers are adept at collecting a wide range of information. 100K ChatGPT logins have been leaked on dark web, cybersecurity firm warns published by Preferred IT Group, LLC Started in 2025, Preferred IT Group is a complete technology solution provider. We are 100% committed to making sure business owners have the most reliable and professional IT service in Fort Wayne.They can pilfer data from:

Web browsers (saved usernames, passwords, cookies)
Email clients
Messaging apps
Cryptocurrency wallets
Other applications storing sensitive data

The breadth of data that these malicious programs can access makes them a potent threat to both individuals and organizations.

The Peak of the Breach: May 2025

Group-IB's Threat Intelligence platform identified that the number of compromised ChatGPT accounts reached a peak in May 2025, with 26,802 available logs. Over the past year, more than 100,000 login credentials to the popular artificial intelligence chatbot ChatGPT have been leaked and traded on the dark web, according to a Singaporean cybersecurity 100K ChatGPT logins have been leaked on dark web, cybersecurity firm warnsThis suggests a concentrated period of activity by the attackers or a surge in successful infostealer infections during that time.The constant fluctuation highlights the ongoing nature of this threat.

Understanding the Dark Web's Role

The dark web is a hidden part of the internet that requires specific software, configurations, or authorization to access.It is often used for illicit activities, including the sale of stolen data, drugs, and weapons. Over the past year, more than 100,000 login credentials to the popular artificial intelligence chatbot ChatGPT have been leaked and traded on the dark web, according to a Singaporean cybersecurity firm.A June 20 blog post by Group-IB revealed just over 101,000 devices containing compromised loginsThe anonymity offered by the dark web makes it an attractive marketplace for cybercriminals.

In this context, the dark web serves as a platform for trading compromised ChatGPT login credentials.Cybercriminals buy and sell these credentials to gain unauthorized access to ChatGPT accounts, potentially for malicious purposes.

The Risks of Compromised ChatGPT Accounts

Having your ChatGPT account compromised can lead to a variety of risks, impacting both your personal and professional life.Here are some potential consequences:

Data Breach: Attackers could access your past conversations with ChatGPT, which might contain sensitive personal or business information.
Fraud and Scams: Cybercriminals could use your account to launch phishing attacks or other scams, impersonating you or your organization.
Intellectual Property Theft: If you've used ChatGPT for work-related tasks, such as generating code or writing marketing materials, your intellectual property could be stolen.
Reputation Damage: A compromised account could be used to spread misinformation or engage in other harmful activities, damaging your reputation.
Financial Loss: In some cases, attackers may be able to access financial information associated with your account or use your account to conduct fraudulent transactions.

Consider a scenario where a marketing agency uses ChatGPT to brainstorm campaign ideas.If their ChatGPT account is compromised, competitors could gain access to these innovative concepts and use them for their own benefit, resulting in a loss of competitive advantage.

Who is Group-IB?

Group-IB is a cybersecurity firm specializing in threat intelligence, incident response, and digital forensics. Bredec Group 100K ChatGPT logins have been leaked on dark web, cybersecurity firm warns - Cointelegraph: 100K ChatGPT logins have been leaked on dark webBased in Singapore, the company works to protect businesses and individuals from cyberattacks. Over the past year, more than 100,000 login credentials to the popular artificial intelligence chatbot ChatGPT have been leaked and traded on the dark web, according to a Singaporean cybersecurity firm. A June 20 blog posts by Group-IB revealed just over 101,000 compromised logins for OpenAI s flagship bot have been traded on dark web marketplaces [ ]Their discovery of the ChatGPT login leak underscores their commitment to monitoring and mitigating cybersecurity threats.

Group-IB's expertise lies in:

Tracking cybercriminal activities
Analyzing malware and other malicious software
Providing threat intelligence to organizations
Assisting with incident response and remediation

Their research and findings play a crucial role in informing the public and enabling organizations to take proactive steps to protect themselves from cyber threats.

Protecting Your ChatGPT Account: Actionable Steps

Given the risks associated with compromised ChatGPT accounts, it is essential to take proactive steps to protect yourself.Here are some practical measures you can implement:

1.Strong and Unique Passwords

Use a strong, unique password for your ChatGPT account and other online services.A strong password should be:

At least 12 characters long
A combination of uppercase and lowercase letters, numbers, and symbols
Not easily guessable (avoid using personal information like your name, birthday, or pet's name)
Different from passwords you use for other accounts

Consider using a password manager to securely store and manage your passwords.

2. Group-IB s Threat Intelligence platform found these compromised credentials within the logs of info-stealing malware traded on illicit dark web marketplaces over the past year. The number of available logs containing compromised ChatGPT accounts reached a peak of 26,802 in May 2025.Enable Two-Factor Authentication (2FA)

Two-factor authentication adds an extra layer of security to your account. 100K ChatGPT logins have been leaked on dark web, cybersecurity firm warns Stolen ChatGPT accounts and services offering their automated creation en masse are also flooding dark web channelsWhen 2FA is enabled, you will need to enter a code from your phone or another device in addition to your password to log in. 1. Security breach of Dark Web Chatbot: The article reports on a recent security breach in Dark Web Chatbot,ChatGPT,which has resulted in the leaked login credentials of over 1.5 million users. Cybersecurity firm Group IB discovered the breach and identified that the chatbot was created using OpenAI s language model GPT-3.This makes it much harder for attackers to access your account, even if they have your password.

Check if OpenAI offers 2FA for ChatGPT and enable it if available. Thousands of ChatGPT users could be at risk of fraud, scams or cyberattacks after they were targeted by info-stealing malware, experts have revealed. More than 101,000 stealer-infected devices withThis can significantly reduce the risk of unauthorized access.

3.Be Wary of Phishing Attempts

Phishing is a common tactic used by cybercriminals to steal login credentials. Login credentials for OpenAI s ChatGPT have flooded the dark web, with over 100,000 being put online in the past 12 months according to cybersecurity firm Group-IB.Be cautious of emails or messages that ask you to click on a link or provide personal information.Always verify the sender's identity before taking any action.

Look for the following red flags in phishing emails:

Suspicious sender address
Generic greetings (e.g., ""Dear Customer"")
Urgent or threatening language
Requests for personal information
Links to unfamiliar websites

If you suspect that an email is a phishing attempt, do not click on any links or provide any information.Report the email to OpenAI and your email provider.

4. Over 100,000 login credentials for OpenAI s ChatGPT artificial intelligence chatbot were leaked onto the dark web, according to a report this week from Group-IB, a cybersecurity firm based in Singapore.Scan Your Devices for Malware

Regularly scan your devices (computers, smartphones, and tablets) for malware. 100K ChatGPT logins have been leaked on dark web, cybersecurity firm warns Services Restored After Hours Of Outage appeared first on Cyber Security News. According to the cyber securityUse a reputable antivirus program and keep it up to date.A comprehensive scan can identify and remove infostealer malware that may be lurking on your system.

Consider using a combination of antivirus software and anti-malware tools for comprehensive protection.Schedule regular scans to ensure that your devices are clean.

5.Keep Your Software Up to Date

Software updates often include security patches that fix vulnerabilities that can be exploited by malware.Keep your operating system, web browser, and other software up to date to minimize the risk of infection.

Enable automatic updates whenever possible to ensure that you are always running the latest version of your software.

6.Monitor Your Account Activity

Regularly monitor your ChatGPT account activity for any signs of unauthorized access. 100K ChatGPT logins have been leaked on dark web, cybersecurity firm warns Login credentials for OpenAI's ChatGPT have flooded the dark web, with over 100,000 being put online in the past 12 months according to cybersecurity firm Group-IB.Look for suspicious logins, changes to your account settings, or unusual conversations.

If you notice any suspicious activity, change your password immediately and contact OpenAI support to report the issue.

7.Exercise Caution When Downloading Files

Be cautious when downloading files from the internet, especially from untrusted sources. The compromised accounts could give bad actors confidential information about companies and individuals. According to a cybersecurity firm based in Singapore, more than 100,000 login credentials for the popular artificial intelligence chatbot, ChatGPT, have been leaked and traded on the dark web in the past year.Malicious software is often disguised as legitimate files, such as documents, images, or videos.Before downloading a file, verify its source and scan it with your antivirus software.

8. In the last year, at least 100,000 devices infected by various infostealer malwares have leaked ChatGPT credentials to the Dark Web. Infostealers can collect just about anything: informationEducate Yourself About Cybersecurity

Stay informed about the latest cybersecurity threats and best practices. More than 100,000 login credentials for the popular AI chatbot ChatGPT have been leaked and traded on the dark web in the past year. The highest number of compromised ChatGPTRead cybersecurity news, attend webinars, and follow cybersecurity experts on social media.The more you know about cybersecurity, the better equipped you will be to protect yourself.

There are many free resources available online that can help you learn about cybersecurity.Take advantage of these resources to improve your security awareness.

The Broader Implications of the Leak

The ChatGPT login leak is not an isolated incident; it highlights a broader trend of increasing cyberattacks and data breaches.As AI becomes more integrated into our lives, it is crucial to address the security challenges that come with it.

This incident serves as a reminder of the importance of:

Investing in cybersecurity infrastructure
Implementing robust security policies and procedures
Educating employees and users about cybersecurity risks
Collaborating with cybersecurity experts to stay ahead of the threat landscape

How Can Businesses Protect Themselves?

Businesses that use ChatGPT or other AI tools must take proactive steps to protect their data and systems.Here are some recommendations:

Implement Strong Authentication Measures: Enforce the use of strong passwords and two-factor authentication for all user accounts.
Conduct Regular Security Audits: Conduct regular security audits to identify and address vulnerabilities in your systems.
Train Employees on Cybersecurity Best Practices: Educate your employees about phishing, malware, and other cyber threats.
Monitor Network Traffic for Suspicious Activity: Use network monitoring tools to detect and respond to potential security incidents.
Implement Data Loss Prevention (DLP) Measures: Use DLP tools to prevent sensitive data from leaving your organization's network.
Establish an Incident Response Plan: Develop a plan for responding to security incidents, including data breaches.
Consider Managed Security Services: Partner with a managed security service provider (MSSP) to enhance your cybersecurity posture.

By implementing these measures, businesses can significantly reduce their risk of falling victim to cyberattacks and data breaches.

Services Restored After Hours Of Outage

In the wake of this security breach, many users experienced outages and disruptions in ChatGPT service.While OpenAI worked to restore services, the incident underscored the fragility of online platforms and the importance of having contingency plans in place.

The outage served as a reminder that even the most sophisticated technology is not immune to vulnerabilities.It also highlighted the need for organizations to have backup systems and processes in place to ensure business continuity in the event of a security incident or outage.

The Future of ChatGPT Security

As ChatGPT and other AI tools continue to evolve, it is crucial to address the security challenges they pose.OpenAI and other AI developers must prioritize security and implement robust measures to protect user data and prevent unauthorized access.

Some potential solutions include:

Developing more sophisticated authentication methods
Implementing advanced threat detection and prevention technologies
Conducting regular security audits and penetration testing
Collaborating with cybersecurity experts to identify and address vulnerabilities
Promoting transparency and accountability in the development and deployment of AI systems

FAQ: Addressing Common Concerns

Q: What should I do if I suspect my ChatGPT account has been compromised?

A: If you suspect that your ChatGPT account has been compromised, take the following steps immediately:

Change your password to a strong, unique password.
Enable two-factor authentication (if available).
Monitor your account activity for any suspicious logins or changes.
Contact OpenAI support to report the issue.
Scan your devices for malware.

Q: How can I tell if my device is infected with infostealer malware?

A: Some signs that your device may be infected with infostealer malware include:

Slow performance
Unexpected pop-up ads
Browser redirects
Unusual network activity
Suspicious emails or messages

If you notice any of these signs, run a full system scan with your antivirus software.

Q: Is ChatGPT safe to use?

A: While ChatGPT is a powerful and useful tool, it is not without its risks.By taking proactive steps to protect your account and devices, you can minimize these risks and enjoy the benefits of ChatGPT safely.

Q: Where can I find more information about cybersecurity threats?

A: There are many resources available online that can help you learn about cybersecurity threats.Some reputable sources include:

The National Cybersecurity and Communications Integration Center (NCCIC)
The SANS Institute
The Anti-Phishing Working Group (APWG)
Cybersecurity news websites and blogs

Conclusion: Staying Vigilant in the Age of AI

The leak of over 100,000 ChatGPT login credentials on the dark web serves as a stark reminder of the evolving cybersecurity landscape.As we increasingly rely on AI tools like ChatGPT, it is essential to prioritize security and take proactive measures to protect our data and accounts.By using strong passwords, enabling two-factor authentication, and staying vigilant against phishing attacks, we can significantly reduce our risk of falling victim to cybercrime.The incident also underscores the critical role of cybersecurity firms like Group-IB in identifying and mitigating these threats.The future of AI security depends on our collective efforts to address vulnerabilities and implement robust security measures.Remember, staying informed and proactive is the best defense against cyber threats in an increasingly interconnected world.Take action today to secure your ChatGPT account and protect your sensitive information.Businesses should also consider partnering with trusted IT providers like Preferred IT Group, LLC, to reinforce their cybersecurity defenses.Don't wait until you become a victim; start protecting yourself now.