MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
openai
Recherche

Are OpenAI's ChatGPT Actions Being Abused To Scan For Web Vulnerabilities?

dimanche 25 août 2024, 22:47 , par Slashdot
Are OpenAI's ChatGPT Actions Being Abused To Scan For Web Vulnerabilities?
Long-time Slashdot reader UnderAttack explains: A blog post at the SANS Internet Storm Center suggests that OpenAI actions are being abused to scan for WordPress vulnerabilities.

Honeypot sensors at the Storm Center detected scans for URLs targeting WordPress that originated exclusively from OpenAI systems. The URLs requested all pages including the pattern '%%target%%', which may indicate that the scan is meant to include additional path components but the expansion of the template failed. The scans were not only identified by the unique user agent but also by the origin IP addresses matching addresses OpenAI published as being used for OpenAI actions. OpenAI actions allow OpenAI to connect to external APIs.

Johannes B. Ullrich, Ph.D., Dean of Research, SANS.edu, wrote that OpenAI seems to be scanning random IP addresses — including honeypots.

Read more of this story at Slashdot.
Lire la suite sur Slashdot
https://slashdot.org/story/24/08/25/2037200/are-openais-chatgpt-actions-being-abused-to-scan-for-web...

Voir aussi

openai OpenAI Japan Exec Teases 'GPT-Next' Slashdot 6 Sep
actions ChatGPT franchit le seuil du million d’utilisateurs professionnels ZDNet.fr 6 Sep
scan ChatGPT montre ses muscles Génération-NT 6 Sep
being Top 3 du jour : HONOR Pad X8a à 130€, Creality CR Scan Otter à 842€ et trottinette Navee S65 à 600€ Génération-NT 6 Sep
vulnerabilities OpenAI co-founder's Safe Superintelligence startup inhales $1B in funding TheRegister 5 Sep
are ChatGPT : 5 astuces pour rédiger de meilleurs prompts ZDNet.fr 5 Sep
abused OpenAI might use Apple’s TSMC for chips ComputerWorld 3 Sep
addresses Le nombre d’utilisateurs de ChatGPT a doublé en un an ZDNet.fr 2 Sep
storm Nvidia, Microsoft et Apple prêts à mettre des milliards de dollars dans OpenAI ZDNet.fr 2 Sep
urls VS Code Fork 'Cursor' - the ChatGPT of Coding? Slashdot 1 Sep
scans Apple might take a stake in OpenAI as it gets intelligent on AI ComputerWorld30 Aug
sans Vulnerabilities surge by 43 percent over 2023 BetaNews30 Aug
including ChatGPT double son nombre d’utilisateurs en 9 mois 01net30 Aug
chatgpt OpenAI, Anthropic agree to get their models tested for safety before making them public ComputerWorld30 Aug
openai's Apple et Nvidia pourraient miser gros sur OpenAI Génération-NT30 Aug
openai Apple serait prête à mettre beaucoup d’argent dans OpenAI, le créateur de ChatGPT 01net30 Aug
actions ChatGPT Passes 200 Million Weekly Active Users Slashdot30 Aug
scan Apple Is in Talks To Invest in OpenAI, WSJ Says Slashdot29 Aug
being Hardis entraîne ChatGPT comme assistant numérique responsable ZDNet.fr29 Aug
vulnerabilities Tim Ballard’s Claims to Fight Sex Trafficking Made Him a MAGA Star. These Women Told Police He Abused Them Wired: Tech.27 Aug
News copyright owned by their original publishers | Copyright © 2004 - 2024 Zicos / 440Network
Date Actuelle
ven. 20 sept. - 00:08 CEST