OpenAI
2 articles
Open(AI) your Bank Account
OpenAI has announced a new feature allowing ChatGPT users to connect their bank accounts and investment platforms via Plaid, giving the chatbot access to spending history, balances, transactions, and liabilities to help with financial planning and decision-making. The feature is initially available only to US-based Pro subscribers ($200/month) and follows the earlier launch of ChatGPT Health, continuing OpenAI's push into sensitive personal data. While OpenAI promises user control over their data and states ChatGPT cannot make account changes, critics note the company does not clearly explain how it will use financial data beyond AI training or what protections exist against potential breaches.
OpenAI Caught in TanStack Supply Chain Attack After Two Staff Machines Hit by Malware
OpenAI confirmed it was affected by the "Mini Shai-Hulud" npm supply chain attack, in which malware hidden in compromised TanStack packages reached two employee devices and allowed attackers to steal a limited amount of internal credential material. The company stated that no customer data or production systems were compromised, but as a precaution it is rotating signing certificates for several desktop products — including ChatGPT Desktop and Codex — and requiring users to update by June 12. The incident is part of a broader campaign linked to a threat group called TeamPCP, which has been systematically poisoning npm ecosystems and stealing developer credentials across multiple software pipelines.