2023-03
Data Leakage
OpenAI

ChatGPT Redis bug exposes users' chat titles and payment details

What happened

A race condition in the redis-py client library caused ChatGPT to serve cached data belonging to other users. Some users saw titles from strangers' chat histories, and payment-related information of about 1.2% of ChatGPT Plus subscribers active during a nine-hour window was exposed — names, emails, billing addresses, and the last four digits of credit cards.

Impact

OpenAI took ChatGPT offline, lost hours of chat history, and notified affected subscribers of exposed personal and partial payment data.

How this could have been prevented

Session-scoped cache isolation and concurrency testing of shared caching layers in AI serving infrastructure catch cross-user leakage before production.

Sources

More data leakage incidents

Would runtime governance have caught this?

Guardion enforces policy on every agent action inline — with visibility, tamper-evident evidence, and DLP for agents and MCPs.

Request a demo