Skip to content

More News Guides Info

Latest News

Latest Guides

About Contact Privacy policy Disclaimer Editorial Code of Conduct Corrections Policy Terms & Conditions Advertising & Affiliate Disclosure
LIVE
Loading prices...
Hackers hijack ChatGPT’s latest update to leak users’ emails

A hacker in the dark

Hackers hijack ChatGPT’s latest update to leak users’ emails

Artificial Intelligence
Shedrach Kongvong

If you’re a ChatGPT user, there is an urgent need for action as hackers are now using the chatbot to leak your personal email data.

Ad

According to an AI expert who shared the information on 12 September, the latest ChatGPT update can be hijacked against users of the chatbot.

How it works 

OpenAI added full support for MCP (Model Context Protocol) tools in ChatGPT on Wednesday, giving ChatGPT permission to connect and read users’ Gmail, Calendar, Sharepoint, Notion, and more.

However, this access can be exploited to leak emails, all the attacker needs is the victim’s email address. The attacker first sends a calendar invite to the victim, and the scary part is that the victim doesn’t need to accept the invite.

The victim only needs to be an over reliant user of ChatGPT who depends on it to plan their day. If they ask ChatGPT to help schedule their day by checking their calendar, the chatbot then reads the jailbroken calendar invite and it is automatically hijacked by the attacker.

Ad

With the attacker in charge, they can command ChatGPT to search the victim’s private emails and send the data to the attacker’s email.

While MCPs are currently only available in developer mode, users who try to avoid the monotony of manually approving every session would blindly approve all without checking, and that is where the attacker succeeds.

Using AI with caution

The use of AI for everyday activities is now commonplace, with many ChatGPT users relying on it for almost every little task.

However with this eye opener, there is need for caution with using not just CHatGPT but any AI chatbot at that. 

Care needs to be taken to always check before approving permissions the bot seeks to carry out any task as blind approval is what gives attackers control. 

How do you rate this article?

Subscribe to our YouTube channel for crypto market insights and educational videos.

💥The EU's finally catching up to the Crypto Race

💥The EU's finally catching up to the Crypto Race

Bitcoin might be losing to gold 💀

Bitcoin might be losing to gold 💀

💥Trump Just Cancelled Europe's' Tariffs

💥Trump Just Cancelled Europe's' Tariffs

🏆This is how you build a WINNING Crypto Portfolio

🏆This is how you build a WINNING Crypto Portfolio

😳BitMine Just Made a $200M Bet on Mr Beast!

😳BitMine Just Made a $200M Bet on Mr Beast!

💥Iran's Crypto Activity Just Exploded

💥Iran's Crypto Activity Just Exploded

Subscribe View all videos

Join our Socials

Briefly, clearly and without noise – get the most important crypto news and market insights first.

Follow us on X @Techgaged_news
Join our Telegram TechGaged Global
Follow on Flipboard @TechGaged

Tags:

AI
ChatGPT
Cybersecurity
Shedrach Kongvong

Shedrach Kongvong Senior Staff Reporter. Have a question? Write us at hello@techgaged.com.

Most Read Today

1

Peter Schiff Warns of a U.S. Dollar Collapse Far Worse Than 2008

2

Dubai Insurance Launches Crypto Wallet for Premium Payments & Claims

3

XRP Whales Buy The Dip While Price Goes Nowhere

4

Samsung crushes Apple with over 700 million more smartphones shipped in a decade

5

Luxury Meets Hash Power: This $40K Watch Actually Mines Bitcoin

AD

Latest

8

Also read

Similar stories you might like.