OpenAI’s ChatGPT app for Mac has experienced a security breach involving two employee devices, according to a report by 9to5Mac. The company is rolling out a software update to address the issue, with completion expected by June 12.
The breach is linked to a compromised widely-used open-source library that affected the two devices. “Upon identification of the malicious activity, we worked quickly to investigate, contain and take steps to protect our systems,” said OpenAI in a blog post.
OpenAI confirmed that there is no evidence that any user data was accessed and asserted that no systems were compromised. The company has engaged a third-party digital forensics and incident response firm to investigate the breach. “We confirmed that only limited credential material was successfully exfiltrated from these code repositories and that no other information or code was impacted,” it added.
Mac users are advised to update their applications when prompted. OpenAI plans to provide additional guidance to users in the future. Users on Windows and iOS platforms do not need to take any action.
This incident marks the second security issue for the ChatGPT app for Mac, following a 2024 occurrence where user conversations were found to be stored locally in plain text rather than encrypted.
