ChatGPT on macOS. (Image Source: OpenAI)
In response to a recently discovered security vulnerability, OpenAI has updated its ChatGPT application for macOS.
The security vulnerability in question left users’ conversations with ChatGPT exposed in plain text on their machines. This issue was first highlighted when developer Pedro José Pereira Vieito demonstrated that ChatGPT conversations could be easily accessed and read by other applications on the same computer.
He was curious why OpenAI opted out of using the app sandbox protections and went ahead looking for where the app data was stored. As it turned out, it was stored locally on devices in plain text. This meant anyone could read the conversations between ChatGPT and the user as long as they knew where to look for the file.
Vieito created a proof-of-concept app that could display users' ChatGPT interactions immediately after they occurred. Here is the demo showcasing the flaw.
Upon being alerted to the issue by The Verge, OpenAI promptly released an update and said they there were aware of the problem.
OpenAI spokesperson, Taya Christianson said:
We are aware of this issue and have shipped a new version of the application which encrypts these conversations. We’re committed to providing a helpful user experience while maintaining our high security standards as our technology evolves.
If you haven’t already done so, users of the ChatGPT macOS app are strongly advised to update to the latest version to ensure that their conversations are properly encrypted.
Source: The Verge
Our articles may contain affiliate links. If you buy through these links, we may earn a small commission.