Third-Party ChatGPT Plugins Could Lead to Account Takeovers

Cybersecurity researchers have found that third-party plugins available for OpenAI ChatGPT could act as a new attack surface for threat actors looking to gain unauthorized access to sensitive data.
According to new research published by Salt Labs, security flaws found directly in ChatGPT and within the ecosystem could allow attackers to install malicious plugins without users' consent

access account account takeovers act attack attackers attack surface chatgpt chatgpt plugins cybersecurity data ecosystem flaws found install labs openai party plugins research researchers salt salt labs security security flaws sensitive sensitive data takeovers third third-party threat threat actors unauthorized unauthorized access