AI
AI Security
Cybersecurity
Cyber landscape
March 3, 2025

OmniGPT’s Massive Alleged Breach…

OmniGPT allegedly got breached to the tune of over 30,000 users’ data. The hacker posted this data online, highlighting how easy it was for them to access all this sensitive information…

OmniGPT’s Massive Alleged Breach…

In 2025, Artificial Intelligence is everywhere we go. AI applications like ChatGPT and Gemini are quickly becoming household favorites for people all over the world. 

With the rise of these apps comes the rise of AI “aggregator” platforms that combine AI tools like these into one location. But just like the apps themselves, the aggregators can come with their own unique data security risks.

The breach

On Monday, February 10th, 2025, a user called “Gloomer” on BreachForum posted the following:

“Hi, I recently breached OmniGPT.co which is a smaller clone of ChatGPT and extracted all messages between their users and the AI (Over 34 million lines), additionally I also got the emails of 30k users and about 20% of these also come with phone number.”

The unnervingly casual message coupled with the outrageous claim instantly had users concerned, and their concerns were confirmed when “Gloomer” posted data samples to back up their claim. 

After all this, the big question still remained: how did they do it? “Gloomer” neglected to specify this, though they did add the following:

“You can find a lot of useful information in the messages such as API keys and credentials and many of the files uploaded to this site are very interesting because sometimes they contain credentials/billing information.”

Weeks after the incident, there’s still been no response from OmniGPT itself, nor have any researchers been able to draw conclusions based on the information available. The one thing they can agree on though, is that any data entered into an AI application should not be considered secure.

Conclusion

AI security is by far the biggest challenge in cyberspace in 2025. With new attacks, breaches and vulnerabilities coming to light every week, we are seeing an unprecedented threat level. And applications tend to be lax until it’s too late, leaving doors open for their APIs to be exploited, as well as the AI models they connect.

Secure your APIs for better AI security with FireTail. FireTail can help you take control of your AI and API security posture today. To see how, sign up for a demo or try our free tier here.

Lina Romero

Related posts

API Security IS AI Security
March 3, 2025

API Security IS AI Security

Security teams today face a dual challenge: protecting AI systems from external threats while securing the APIs that power them. The reality is clear—if your APIs aren’t secure, neither is your AI.

Read more
What We Can Learn from The New Malware Abusing Microsoft
February 18, 2025

What We Can Learn from The New Malware Abusing Microsoft

Today’s cyber landscape is littered with threats, risks, and vulnerabilities. Every week, we are seeing an increase not only in attacks, but also in the methods used to attack. This week, a new family of malware was discovered exploiting Microsoft’s Graph API.

Read more
AI & API: Double Rainbow for Cybersecurity
February 18, 2025

AI & API: Double Rainbow for Cybersecurity

AI security and API security run alongside each other, much like a double rainbow. Each one contains a full spectrum of security requirements that work in tandem with one another.

Read more

This site uses cookies

By using this website, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.

Got it!