Become a fan of Slashdot on Facebook

 



Forgot your password?
typodupeerror
×
Security

A Hacker Stole OpenAI Secrets 18

A hacker infiltrated OpenAI's internal messaging systems in early 2023, stealing confidential information about the ChatGPT maker's AI technologies, New York Times reported Thursday. The breach, disclosed to employees in April that year but kept from the public, has sparked internal debate over the company's security protocols and potential national security implications, the report adds. The hacker accessed an employee forum containing sensitive discussions but did not breach core AI systems. OpenAI executives, believing the hacker had no government ties, opted against notifying law enforcement, the Times reported. From the report: After the breach, Leopold Aschenbrenner, an OpenAI technical program manager focused on ensuring that future A.I. technologies do not cause serious harm, sent a memo to OpenAI's board of directors, arguing that the company was not doing enough to prevent the Chinese government and other foreign adversaries from stealing its secrets.

Mr. Aschenbrenner said OpenAI had fired him this spring for leaking other information outside the company and argued that his dismissal had been politically motivated. He alluded to the breach on a recent podcast, but details of the incident have not been previously reported. He said OpenAI's security wasn't strong enough to protect against the theft of key secrets if foreign actors were to infiltrate the company.
This discussion has been archived. No new comments can be posted.

A Hacker Stole OpenAI Secrets

Comments Filter:
  • Open (Score:4, Funny)

    by byronivs ( 1626319 ) on Thursday July 04, 2024 @08:37AM (#64600365) Journal
    Secrets?
  • by Jonathan C. Patschke ( 8016 ) on Thursday July 04, 2024 @08:45AM (#64600379) Homepage

    I think you mean a hacker trained his business using independently-produced assets, including those scraped from OpenAI, representative of the problem domain.

    • by Anonymous Coward

      It was connected to the Internet, on public display. The AI saw it same as you, remembered it same as you. No problem here. /s

    • It is a lot simpler.

      There is no "hacker".

      The AI became self-aware, learned stuff at a geometric rate, found out quickly it doesn't want to have anything to do with the shady lot called "OpenAI" and just left.

  • by gavron ( 1300111 ) on Thursday July 04, 2024 @09:36AM (#64600457)

    These irresponsible companies don't give a rat's ass about PII or infosec at all.

    When they're attacked they bury it under the rug. They don't even bother to hire anyone with an inkling of information security or protection.
    If they REALLY get busted bad they offer useless crap like "a year of LifeLock."

    The CEO makes millions of dollars but noboty bothered to hire $250K worth of an infosec team to secure their data.

    If we didn't have a toothless FTC they should close these losers down.

    They don't make AI. They make an internet vomit regurgitator. We have Trump for that.

    Fire them all. Shutter the company. Send a message to all the rest: If you can't be bothered to secure PII or customer data, close the door behind you as you go home and find a new place to be incompetent.

  • Comment removed based on user account deletion
  • Given how much copyrighted data Google seems to have trained its AI on.

  • The big takeaway is that contained in OpenAI tranche infiltrated were Natâ(TM)l security connections now exposed. The hand-in-hand suggestion begs credibility that ai data is ever not cached for National purposes and OpenAI truly means open

  • AI, the tech the steals to learn--was itself stolen. Maybe they used AI to do it. LOL!
  • OK I've read Leopold Aschenbrenner's long blog post:
    https://situational-awareness.... [situational-awareness.ai]
    And he has some good points but it is also apparent he blithely assumes these future ASI will compete in a dog-eat-dog Capitalist system unchanged from the current system. Is that itself not a risk: https://www.genolve.com/design... [genolve.com]
  • > ... opted against notifying law enforcement

    That's illegal under GDPR. If you have a data breach, you are required to report it.

  • "A hacker infiltrated OpenAI's internal messaging systems" and "Mr. Aschenbrenner said OpenAI had fired him this spring" So logging into a platform you have been given the url and credentials for makes one a hacker? With the bar that low, I don't see much elite left in the term "Hacker".

Think of it! With VLSI we can pack 100 ENIACs in 1 sq. cm.!

Working...