CyberSecurityBoard
Sponsor Register Login

OpenAI now pays researchers $100,000 for critical vulnerabilities

OpenAI launched its bug bounty program in April 2023 with payouts of up to $20,000 for researchers who report vulnerabilities, bugs, or security flaws in its product line via the Bugcrowd crowdsourced security platform. Artificial intelligence company OpenAI has announced a fivefold increase in the maximum bug bounty rewards for "exceptional and differentiated" critical security vulnerabilities from $20,000 to $100,000. For instance, until April 30, OpenAI has doubled payouts for security researchers who report Insecure Direct Object Reference (IDOR) vulnerabilities in its infrastructure and products, with a maximum reward of $13000. OpenAI unveiled its bug bounty program one month after disclosing a ChatGPT payment data leak blamed on a bug in its platform's Redis client open-source library. The company says that model safety issues are out of scope, just as jailbreaks and safety bypasses exploited by ChatGPT users to trick the chatbot into ignoring safeguards implemented by OpenAI engineers. As disclosed then, this bug caused the ChatGPT service to expose chat queries and personal data (subscriber names, email addresses, payment addresses, and partial credit card information) for roughly 1.2% of ChatGPT Plus subscribers. "We are significantly increasing the maximum bounty payout for exceptional and differentiated critical findings to $100,000 (previously $20,000)," the company said.

This Cyber News was published on www.bleepingcomputer.com. Publication date: Fri, 28 Mar 2025 17:55:06 +0000


Cyber News related to OpenAI now pays researchers $100,000 for critical vulnerabilities

CVE-2022-49069 - In the Linux kernel, the following vulnerability has been resolved: ...
3 months ago
Sam Altman's Return As OpenAI CEO Is A Relief-and Lesson-For Us All - The sudden ousting of OpenAI CEO Sam Altman on Friday initially seemed to suggest one thing: he must have done something really, really bad. Possibly illegal. So when OpenAI's board of directors publicly announced that Altman was fired after "Failing ...
1 year ago Forbes.com
OpenAI now pays researchers $100,000 for critical vulnerabilities - OpenAI launched its bug bounty program in April 2023 with payouts of up to $20,000 for researchers who report vulnerabilities, bugs, or security flaws in its product line via the Bugcrowd crowdsourced security platform. Artificial intelligence ...
2 months ago Bleepingcomputer.com
OpenAI's board might have been dysfunctional-but they made the right choice. Their defeat shows that in the battle between AI profits and ethics, it's no contest - The drama around OpenAI, its board, and Sam Altman has been a fascinating story that raises a number of ethical leadership issues. What are the responsibilities that OpenAI's board, Sam Altman, and Microsoft held during these quickly moving events? ...
1 year ago Fortune.com Equation
UK Scrutiny Of Microsoft Partnership With OpenAI - CMA seeks feedback about the relationship between Microsoft and OpenAI, and whether it has antitrust implications. Microsoft, it should be remembered, was firmly rebuked for its conduct by the CMA in October after the UK regulator reversed its ...
1 year ago Silicon.co.uk
Microsoft Invests Billions in OpenAI – Innovator in Chatbot and GPT Technology - Microsoft has announced a $1 billion investment in OpenAI, the San Francisco-based artificial intelligence (AI) research and development firm. Founded by tech moguls Elon Musk and Sam Altman, OpenAI is a leader in AI technology, and the investment ...
2 years ago Securityweek.com
OpenAI's Sora Generates Photorealistic Videos - OpenAI released on Feb. 15 an impressive new text-to-video model called Sora that can create photorealistic or cartoony moving images from natural language text prompts. Sora isn't available to the public yet; instead, OpenAI released Sora to red ...
1 year ago Techrepublic.com
Google Researchers' Attack Prompts ChatGPT to Reveal Its Training Data - A team of researchers primarily from Google's DeepMind systematically convinced ChatGPT to reveal snippets of the data it was trained on using a new type of attack prompt which asked a production model of the chatbot to repeat specific words forever. ...
1 year ago 404media.co
ChatGPT Maker OpenAI Raises $6.6bn In Funding | Silicon UK - Last week when OpenAI’s ‘for profit’ restructuring move was revealed, three senior executives abruptly announced they were departing, including Chief Technology Officer Mira Murati, VP Research Barret Zoph, and Chief Research ...
8 months ago Silicon.co.uk
OpenAI Launches Security Committee Amid Ongoing Criticism - The new committee comes in the wake of two key members of the Superalignment team - OpenAI co-founder Ilya Sutskever and AI researcher Jan Leike - left the company. The shutting down of the superalignment team and the departure of Sutskever and Leike ...
1 year ago Securityboulevard.com
Exclusive: OpenAI researchers warned board of AI breakthrough ahead of CEO ouster, sources say - Nov 22 - Ahead of OpenAI CEO Sam Altman's four days in exile, several staff researchers wrote a letter to the board of directors warning of a powerful artificial intelligence discovery that they said could threaten humanity, two people familiar with ...
1 year ago Reuters.com
Poking holes in Google products bagged bug hunters $10M The Register - Google awarded $10 million to 632 bug hunters last year through its vulnerability reward programs. The web goliath's 2023 total represents a slight dip compared to the $12 million in bounties it paid the previous year. Hopefully this means ...
1 year ago Go.theregister.com Hunters
OpenAI Offering Up to $100,000 for Critical Vulnerabilities in its Infrastructure - This substantial bounty increase signals OpenAI’s recognition that as its AI systems become more powerful and widely deployed, the security stakes continue to rise, requiring proportionally stronger investments in identifying and addressing ...
2 months ago Cybersecuritynews.com
Nadella Says Microsoft 'Comfortable' With OpenAI Governance - Microsoft chief Nadella says he is 'comfortable' with OpenAI's non-profit governance structure, plays down competition issues. Microsoft secured a non-voting board observer role at OpenAI following Altman's firing and return, but Nadella said ...
1 year ago Silicon.co.uk
Leak confirms OpenAI's GPT 4.1 is coming before GPT 5.0 - As spotted by AI researcher Tibor Blaho, OpenAI is already testing model art for o3, o4-mini, and GPT-4.1 (including nano and mini variants) on the OpenAI API platform. Also, GPT-5 isn't happening anytime soon, as OpenAI plans to focus on o3, ...
2 months ago Bleepingcomputer.com
OpenAI Reveals ChatGPT Is Being DDoS-ed - ChatGPT developer OpenAI has admitted the cause of intermittent outages across its flagship generative AI offering over the past day: distributed denial of service attacks. According to the developer's status page, ChatGPT and its API have been ...
1 year ago Infosecurity-magazine.com
OpenAI rolls out imperfect fix for ChatGPT data leak flaw - OpenAI has mitigated a data exfiltration bug in ChatGPT that could potentially leak conversation details to an external URL. According to the researcher who discovered the flaw, the mitigation isn't perfect, so attackers can still exploit it under ...
1 year ago Bleepingcomputer.com
ChatGPT Clone Apps Collecting Personal Data on iOS, Play Store - On Android devices, one of the apps analyzed by researchers has more than 100,000 downloads, tracks, and shares location data with ByteDance and Amazon, etc. ChatGPT, the AI software, has already taken the Internet by storm, and that is why ...
2 years ago Hackread.com Everest
Locking Down ChatGPT: A User's Guide to Strengthening Account Security - OpenAI officials said that the user who reported his ChatGPT history was a victim of a compromised ChatGPT account, which resulted in the unauthorized logins. OpenAI has confirmed that the unauthorized logins originate from Sri Lanka, according to an ...
1 year ago Cysecurity.news
New York Times Sues Microsoft, OpenAI AI Training - The New York Times has sued both OpenAI and Microsoft, alleging copyright infringement of its news content. The NYT said it is the first major US media organisation to sue OpenAI, the creator of the popular AI chatbot ChatGPT. The lawsuit, filed in ...
1 year ago Silicon.co.uk
OpenAI tests watermarking for ChatGPT-4o Image Generation model - My sources also told me that OpenAI recently started testing watermarks for images generated using ChatGPT's free account. If you subscribe to ChatGPT Plus, you'll be able to save images without the watermark. In a blog post, OpenAI previously ...
2 months ago Bleepingcomputer.com
Samsung Galaxy S23 hacked twice on first day of Pwn2Own Toronto - Security researchers hacked the Samsung Galaxy S23 twice during the first day of the consumer-focused Pwn2Own 2023 hacking contest in Toronto, Canada. They also demoed exploits and vulnerability chains targeting zero-days in Xiaomi's 13 Pro ...
1 year ago Bleepingcomputer.com
AI models can be weaponized to hack websites on their own The Register - AI models, the subject of ongoing safety concerns about harmful and biased output, pose a risk beyond content emission. When wedded with tools that enable automated interaction with other systems, they can act on their own as malicious agents. ...
1 year ago Go.theregister.com
49 unique zero-days Uncovered in Pwn2Own Automotive - On the final day of Pwn2Own Automotive 2024 - Day 3, researchers were granted $1,323,750 in rewards for identifying 49 distinct zero-days. Particularly, the infotainment system and modem of Tesla were attacked by the Synacktiv team, and each ...
1 year ago Cybersecuritynews.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)