// OpenaiMEDIUM
Threat actors launched the "Poisoned Tenant" campaign creating fraudulent OpenAI organizations that impersonate legitimate companies, particularly targeting cybersecurity and technology firms. Employees received legitimate-appearing invitation emails from OpenAI's official address (noreply@tm.openai.com) to join fake tenants, attempting to trick them into sharing sensitive company information through chats and projects. Push Security discovered the campaign after multiple employees received invitations to a fake "Push Security Inc." ChatGPT workspace created by attackers using Gmail addresses.
// Get alerts for Openai