Home > Tech

ChatGPT has a scary security risk after new update. Is your data in trouble?

The introduction of file uploading in ChatGPT Plus is creating some unfortunate future problems.
By
Chance Townsend
 on 
Share on Facebook Share on Twitter Share on Flipboard
RGB overlay of the ChatGPT logo
Credit: Mashable / Bob Al-Greene

Thanks to new ChatGPT updates like the Code Interpreter, OpenAI's popular generative artificial intelligence is rife with more security concerns. According to research from security expert Johann Rehberger (and follow-up work from Tom's Hardware), ChatGPT has glaring security flaws that stem from its new file-upload feature.

OpenAI's recent update to ChatGPT Plus added a myriad of new features, including DALL-E image generation and the Code Interpreter, which allows Python code execution and file analysis. The code is created and run in a sandbox environment that is unfortunately vulnerable to prompt injection attacks.

SEE ALSO: OpenAI's Sam Altman breaks silence on AI executive order

A known vulnerability in ChatGPT for some time now, the attack involves tricking ChatGPT into executing instructions from a third-party URL, leading it to encode uploaded files into a URL-friendly string and send this data to a malicious website. While the likelihood of such an attack requires specific conditions (e.g., the user must actively paste a malicious URL into ChatGPT), the risk remains concerning. This security threat could be realized through various scenarios, including a trusted website being compromised with a malicious prompt — or through social engineering tactics.

Mashable Light Speed
Want more out-of-this world tech, space and science stories?
Sign up for Mashable's weekly Light Speed newsletter.
By clicking Sign Me Up, you confirm you are 16+ and agree to our Terms of Use and Privacy Policy.
Thanks for signing up!

Tom's Hardware did some impressive work testing just how vulnerable users may be to this attack. The exploit was tested by creating a fake environment variables file and using ChatGPT to process and inadvertently send this data to an external server. Although the exploit's effectiveness varied across sessions (e.g., ChatGPT sometimes refused to load external pages or transmit file data), it raises significant security concerns, especially given the AI's ability to read and execute Linux commands and handle user-uploaded files in a Linux-based virtual environment.

Related Stories

As Tom's Hardware states in its findings, despite seeming unlikely, the existence of this security loophole is significant. ChatGPT should ideally not execute instructions from external web pages, yet it does. Mashable reached out to OpenAI for comment, but it did not immediately respond to our request.

Topics Artificial Intelligence ChatGPT OpenAI

Headshot of a Black man
Chance Townsend
Assistant Editor, General Assignments

Currently residing in Chicago, Illinois, Chance Townsend is the General Assignments Editor at Mashable covering tech, video games, dating apps, digital culture, and whatever else comes his way. He has a Master's in Journalism from the University of North Texas and is a proud orange cat father. His writing has also appeared in PC Mag and Mother Jones.

In his free time, he cooks, loves to sleep, and finds great enjoyment in Detroit sports.

Recommended For You
This is how long (and why) OpenAI's Operator holds onto your deleted data
By Cecily Mauran
OpenAI’s Operator on a website
OpenAI announces new ChatGPT product amid DeepSeek AI news
By Cecily Mauran
OpenAI logo behind the DeepSeek logo on a smartphone
OpenAI launches 'deep research' AI agent for ChatGPT
By Cecily Mauran
OpenAI CEO Sam Altman talking about deep research onstage at an event in Tokyo
Addresses, earnings, medical records of Americans could be in DOGE's hands soon
By Neal Broverman
Money overlaid by Social Security cards.
ChatGPT search is now available to all users, even those without an account
By Matt Binder
OpenAI ChatGPT search on mobile device
Trending on Mashable
NYT Connections hints today: Clues, answers for April 16, 2025
By Mashable Team
Connections game on a smartphone
Wordle today: Answer, hints for April 16, 2025
By Mashable Team
Wordle game on a smartphone
NYT Connections hints today: Clues, answers for April 15, 2025
By Mashable Team
Connections game on a smartphone
Deep sea craft filmed unprecedented footage of a colossal squid
By Mark Kaufman
An image from the first-ever confirmed footage of a colossal squid.
Want to be an AI action figure? Just give ChatGPT a full-body pic.
By Tim Marcin
open ai logo on a phone
The biggest stories of the day delivered to your inbox.
These newsletters may contain advertising, deals, or affiliate links. By clicking Subscribe, you confirm you are 16+ and agree to our Terms of Use and Privacy Policy.
Thanks for signing up. See you at your inbox!