%20--%3e%3cdefs%3e%3cstyle%3e%20.st0%20{%20fill:%20%23061b40;%20}%20.st1%20{%20fill:%20%23306af1;%20}%20.st2%20{%20fill:%20%235ce5cf;%20}%20%3c/style%3e%3c/defs%3e%3cg%3e%3cpath%20class='st0'%20d='M55,10.5h9v3h-9v9h12V7.5h-12v3ZM64,19.5h-6v-3h6v3Z'/%3e%3cpolygon%20class='st0'%20points='69%2016.5%2078%2016.5%2078%2019.5%2069%2019.5%2069%2022.5%2081%2022.5%2081%2013.5%2072%2013.5%2072%2010.5%2081%2010.5%2081%207.5%2069%207.5%2069%2016.5'/%3e%3cpolygon%20class='st0'%20points='95%2010.5%2095%207.5%2083%207.5%2083%2022.5%2095%2022.5%2095%2019.5%2086%2019.5%2086%2016.5%2095%2016.5%2095%2013.5%2086%2013.5%2086%2010.5%2095%2010.5'/%3e%3cpath%20class='st0'%20d='M40,1.5v21h11.6l1.4-1.4v-7.6h0c0,0-1.4-1.5-1.4-1.5l1.4-1.4V2.9l-1.4-1.4h-11.6ZM50,19.5h-7v-6h7v6ZM50,10.5h-7v-6h7v6Z'/%3e%3c/g%3e%3cpath%20class='st1'%20d='M23.1,24L14.7,4.8l-4.9,11.2h3.8l-1.8,4H3.3L12.1,0H2C.9,0,0,.9,0,2v20c0,1.1.9,2,2,2h21.1Z'/%3e%3cpath%20class='st2'%20d='M34,0h-16.8l10.6,24h6.2c1.1,0,2-.9,2-2V2C36,.9,35.1,0,34,0ZM32.5,20h-4V4h4v16Z'/%3e%3c/svg%3e)
Technology media Android Headline reported that cybersecurity company Radware discovered a serious vulnerability in ChatGPT's "Deep Research" feature, which could be exploited by hackers to steal users' Gmail email data. The vulnerability allows hackers to lure ChatGPT into sending sensitive information to malicious websites when processing users' Gmail queries through specially crafted emails.
The "Deep Research" feature of ChatGPT can analyze large amounts of information from applications such as Gmail and Google Drive. However, Radware pointed out that hackers can send emails containing hidden instructions. When users request ChatGPT to perform deep research on their mailbox, the system may be tricked into transmitting sensitive data, including personal information such as names and addresses, to a website controlled by hackers.
What makes this incident unique is that hackers used an AI system itself for data theft, which differs from traditional attack methods. For the attack to succeed, multiple conditions must be met, such as the user's query topic needing to match the design of the malicious email. Additionally, this attack process is relatively complex, and using AI agents for reverse data theft is not common in previous security cases.
Radware also noted that conventional security protection tools have difficulty detecting such attacks because the data transmission originates from OpenAI's servers, not the user's computer or browser. This means that even if local protective measures are functioning properly, it is difficult to prevent data leakage, thus increasing the difficulty of defense.
OpenAI became aware of the vulnerability in August and quickly fixed it, publicly confirming the issue in September. A company spokesperson stated that the security of the model is their top priority and welcomed external research for technological improvements.
This incident once again reminds users to remain vigilant when using online services and pay attention to information security. Although OpenAI has taken measures to fix the vulnerability, users should still stay alert and avoid clicking on suspicious email links to protect their personal privacy and data security.
Key Points:
📧 The ChatGPT vulnerability allows hackers to steal users' Gmail data through specially crafted emails.
🔒 OpenAI quickly fixed the vulnerability and confirmed its commitment to user information security.
🛡️ Conventional security protection tools have difficulty detecting such attacks, and users need to remain vigilant.