Hackers breached OpenAI's press account to promote a phishing scam, using a fraudulent token called “OPENAI” to deceive users.
The attackers disabled comments to prevent suspicion, tricking users into connecting their crypto wallets to a fake website.
Similar phishing attacks have previously targeted OpenAI executives, indicating a recurring pattern in these types of scams.
On September 23, hackers managed to breach OpenAI’s official press account on X, previously known as Twitter, and used it to post phishing links. The cybercriminals behind the attack promoted a fraudulent token called "OPENAI," which they claimed would bridge blockchain technology with artificial intelligence. While the posts were later removed, OpenAI has yet to officially acknowledge the breach.
https://twitter.com/SmokeAwayyy/status/1838345566100820102
Phishing Scam Targets OpenAI Users with Fraudulent Token
The attackers falsely promised that users could claim a portion of the “OPENAI” token supply, giving them access to the platform’s future beta programs. The fraudulent post included a phishing link that redirected unsuspecting users to a flagged website designed to look like an official OpenAI page. According to users on X, the fake website initially appeared legitimate, with branding closely mimicking OpenAI’s. However, clicking on the logo prompted visitors to connect their cryptocurrency wallets.
Hackers Disable Comments to Avoid Suspicion
To avoid suspicion and prevent other users from warning about the scam, the hackers disabled the comment section on the malicious posts. They further added a misleading message stating, “Comments turned off due to malicious links. Good luck to all!” This move was designed to discourage scrutiny, luring more victims into clicking the phishing link.
Once users connected their crypto wallets to the fake platform, they unknowingly signed fraudulent transactions. These transactions appeared legitimate but handed over control of the user’s assets to the attackers. Consequently, the attackers could drain all the funds stored in the compromised wallets.
History of Attacks on OpenAI Executives
This recent breach is not the first time OpenAI executives have been targeted. Similar phishing attempts have been reported in the past, with prominent figures within the company falling victim to these attacks. In recent months, OpenAI researcher Jason Wei and Chief Scientist Jakub Pachocki also had their accounts compromised in similar schemes. Last year, OpenAI’s CTO Mira Murati was subjected to a similar hack in June 2023.
This incident follows a pattern of similar attacks across the crypto space. For instance, Decentraland, a virtual reality project, suffered an identical breach last week. Scammers promoted a fake airdrop of its native token to trick users into connecting their wallets and approving fraudulent transactions. Although it remains unclear whether the same group is responsible for these attacks, the methods used in each case show striking similarities.