Researchers at EdisonWatch have revealed that the new calendar integration feature in ChatGPT can be exploited to execute commands that may lead to the theft of sensitive emails. This type of attack, requiring user interaction, highlights ongoing vulnerabilities within AI systems and the risks associated with their integration into enterprise tools.

A malicious desktop application posing as a ChatGPT client, named PipeMagic, has been found to contain a backdoor that compromises users' security. The fraudulent app can potentially allow attackers to execute harmful commands on infected systems, raising concerns about software authenticity and cybersecurity practices. Users are advised to avoid downloading unverified applications and ensure software comes from trusted sources.

A fake version of ChatGPT, disguised as an InVideo AI tool, is tricking users into downloading ransomware. This malicious software locks users out of their systems and demands a ransom for access. The incident highlights the urgent need for vigilance against such deceptive schemes in the AI landscape.

OpenAI has banned ChatGPT accounts that are linked to Russian and Chinese cyber operations. This decision aims to prevent the misuse of AI technologies for malicious activities and uphold security measures against cyber threats. The action reflects ongoing concerns over the exploitation of AI by state-sponsored actors.