OmniGPT allegedly suffers massive data breach, exposing 30,000 users

Popular AI aggregator OmniGPT has allegedly fallen victim to a significant data breach, potentially exposing the personal information of over 30,000 users. The breach, if confirmed, raises concerns about data security in AI-driven platforms, with leaked data reportedly including emails, phone numbers, API and crypto keys, credentials, billing information, and chatbot interactions.

On Monday, a user identified as "Gloomer" on BreachForums claimed responsibility for the breach, posting samples of the stolen data. "This leak contains all messages between the users and the chatbot of this site, as well as all links to the files uploaded by users and 30k user emails," the user stated in their post.

Gloomer, a "God" level member on the hacking forum—denoting top-tier status—allegedly posted two weeks after cybersecurity firm KrakenLabs first reported the breach. According to KrakenLabs, a similar post was made by a user with the same alias but a different profile avatar, suggesting a continuation of the claim.

"Hi, I recently breached OmniGPT.co, a smaller clone of ChatGPT, and extracted all messages between their users and the AI (over 34 million lines). I also got the emails of 30k users, and about 20% of these come with phone numbers," Gloomer had previously stated.

While the exact method of the attack remains undisclosed, the threat actor appears to emphasize the sensitivity of the stolen data. "You can find a lot of useful information in the messages, such as API keys and credentials. Many of the files uploaded to this site are very interesting because sometimes they contain credentials and billing information," Gloomer added.

Further compounding security concerns, the hacker claimed to have extracted crypto private keys from the stolen dataset. "I also extracted all crypto private keys from there with the help of a program I made that worked with regex. I found about 130 keys, 10 of which have small balances and sometimes NFTs, so don’t look for that. Other than that, I have not searched the messages file further."

As of January 24, the data dump was allegedly being sold for $100. If verified, affected users could face severe risks, including identity theft, phishing attempts, unauthorized access, and financial fraud. OmniGPT has not publicly addressed the alleged breach. Despite efforts by CSO to seek comments, the company has not responded as of the publication of this report.

Beyond reputational damage, OmniGPT could face legal ramifications, particularly under data protection laws such as the European General Data Protection Regulation (GDPR), given its international user base. Cybersecurity outlet Hackread.com, which reviewed samples of the leaked data, confirmed that affected users include individuals from Brazil, Italy, India, Pakistan, China, and Saudi Arabia.