OpenAI Updates ChatGPT App for Mac after Privacy Concerns Discovered
OpenAI is a company known for its advanced artificial intelligence technology, but a recent discovery by a developer has raised concerns about the privacy and security of its ChatGPT app for Mac users. Pedro José Pereira Vieito uncovered that the app was locally storing users’ conversations with the chatbot in plain text, leaving them vulnerable to potential access by outside sources.
In an interview with The Verge, Vieito explained how he stumbled upon this privacy risk while investigating why OpenAI had not utilized the app sandbox protections. He then created an app called “ChatGPTStealer” to demonstrate how easily one could access and view the chat conversations outside of the ChatGPT app. The simple process only required changing the file name, highlighting the extent of the security oversight.
The ChatGPT Mac app, only available through OpenAI’s website, bypassed Apple’s sandboxing requirements enforced on software distributed via the Mac App Store. This allowed any other running app or process on the user’s computer to potentially access the chat conversations without needing the user’s permission, posing a significant privacy concern.
Upon being notified of the issue by The Verge, OpenAI promptly released an update (v1.2024.171) for the ChatGPT app, which now encrypts all conversations to ensure user data is kept secure. OpenAI spokesperson Taya Christianson assured users that the company is committed to maintaining high security standards as their technology evolves, emphasizing the importance of providing a helpful user experience while prioritizing privacy.
Following the update, Vieito’s ChatGPTStealer app no longer functions, and The Verge confirmed that conversations with the chatbot are no longer accessible in plain text. This quick response from OpenAI demonstrates their dedication to addressing privacy concerns promptly and ensuring the safety of user data.
It’s crucial for technology companies to prioritize user privacy and security in the development of their products, especially when dealing with sensitive information like personal conversations. OpenAI’s swift action to address this issue is commendable, and serves as a reminder of the importance of safeguarding user data in an increasingly digital world.