all InfoSec news
What Happens When an AI Company Falls Victim to a Software Supply Chain Vulnerability
Security Boulevard securityboulevard.com
On March 20th OpenAI took down the popular generative AI tool ChatGPT for a few hours. It later admitted that the reason for the outage was a software supply chain vulnerability that originated in the open-source in-memory data store library ‘Redis’.
As a result of this vulnerability, there was a time window (between 1–10 am PST on March 20) where users could accidentally access other users’ chat history titles and possibly exposed …
ai chatgpt data down generative generative ai library march memory openai outage popular software software supply chain store supply supply chain supply chain vulnerability tool victim vulnerability