CSOonline

New backdoor ‘SesameOp’ abuses OpenAI Assistants API for stealthy C2 operations

Microsoft uncovers a months-long campaign where threat actors used OpenAI’s legitimate API as a covert command-and-control channel, bypassing traditional detection methods. In a newly uncovered ...
Infosecurity-magazine.com

OpenAI Assistants API Exploited in 'SesameOp' Backdoor

Threat actors are weaponizing the OpenAI Assistants Application Programming Interface (API) to deploy a backdoor and manage compromised devices remotely. The backdoor was discovered by Microsoft ...
Hosted on MSN

OpenAI and Salesforce unveil AI agents to automate workflows

OpenAI and Salesforce have launched advanced AI agents designed to handle complex, multi-step enterprise workflows, signaling a shift from AI as a support tool to an embedded operational partner.
Bleeping Computer

OpenAI discloses API customer data breach via Mixpanel vendor hack

OpenAI is notifying some ChatGPT API customers that limited identifying information was exposed following a breach at its third-party analytics provider Mixpanel. Mixpanel offers event analytics that ...
Dataquest

OpenAI API user data exposed in Mixpanel security breach

OpenAI has confirmed a security incident involving Mixpanel, a third-party web analytics provider it used for its API product frontend. The incident, which was a breach of Mixpanel's systems and not ...
Dark Reading

SesameOp Backdoor Uses OpenAI API for Covert C2

A new backdoor uses an OpenAI API for command-and-control (C2) communications to covertly manage malicious activities within a compromised environment, demonstrating a unique way attackers can abuse ...
VentureBeat

OpenAI is ending API access to chatgpt-4o-latest in February 2026

OpenAI has sent out emails notifying API customers that its chatgpt-4o-latest model will be retired from the developer platform in mid-February 2026. Access to the model is scheduled to end on ...