OpenAI Confirms User Data Exposed After Mixpanel Security Breach

OpenAI said that some of the data relating to its API users, such as name, email, and location, could have been compromised.

Advertisement
Written by Akash Dutta, Edited by Rohan Pal | Updated: 27 November 2025 16:24 IST
Highlights
  • The Mixpanel data breach occurred on November 9
  • OpenAI said no chat, password, or API keys were exposed
  • The AI giant has removed Mixpanel from its production services

OpenAI has asked impacted users to remain vigilant for credible-looking phishing attempts

Photo Credit: Reuters

OpenAI's user data was exposed in a recent Mixpanel data breach, the company stated on Thursday. The San Francisco-based artificial intelligence (AI) giant revealed that while most of its sensitive user data, and the data of the end-users accessing ChatGPT, Sora app, and the ChatGPT Atlas browser was not exposed in this breach, some information about its application programming interface (API) users might have been leaked. The company has now started a security investigation, and OpenAI has stopped using Mixpanel services.

OpenAI's API Data Might Have Been Breached

In a newsroom post, the AI giant detailed the data breach incident that occurred on November 9. Mixpanel's systems were hacked into by an attacker and the threat actor was able to export a dataset that also included information about OpenAI's users. However, the ChatGPT maker said that the breached dataset contained limited customer identifiable information and analytics information. Mixpanel shared the affected dataset with the AI company on November 25, stating that they were investigating the incident.

Advertisement

OpenAI also highlighted that its servers and products were not impacted in this data breach, and sensitive data, such as that, API requests, API usage data, passwords, credentials, API keys, payment details, or government IDs, were not compromised.

Detailing the impact OpenAI's API users should expect, the company said that user profile information associated with the use of “platform.openai.com” might have been included in the exported data. The particulars of the breach could include:

Advertisement
  • Name that was provided to OpenAI on the API account 
  • Email address associated with the API account
  • Approximate coarse location based on API user browser (city, state, country)
  • Operating system and browser used to access the API account
  • Referring websites
  • Organisation or User IDs associated with the API account

As a response, the ChatGPT maker has removed Mixpanel from its production services. It has also reviewed the affected datasets and is working with the digital analytics company and other partners to understand the full scope of the breach. “While we have found no evidence of any effect on systems or data outside Mixpanel's environment, we continue to monitor closely for any signs of misuse,” the company said.

As a preventive measure, the AI giant has requested all potentially impacted users to remain alert towards “credible-looking phishing attempts or spam.”

 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Advertisement

Related Stories

Popular Mobile Brands
  1. Tecno's Camon 50 Ultra 5G Will Arrive in India on This Date via Amazon
  2. Apple Reviews iPhone 17 Demand as Costs Rise Due to Memory Shortage: Report
  3. Sony IER-M500 In-Ear Monitors Launched With 5mm Driver, Hi-Res Audio
  4. OTT Releases This Week: Peddi, Ikka, Balti, Dose, The Westies, and More
  5. Motorola Edge 70 Max to Launch in India On This Day
  6. Asus Expands AI PC Lineup in India With Refreshes Vivobook 14, Vivobook 15
  1. Tecno Camon 50 Ultra 5G India Launch Date Announced; Colourways and Amazon Availability Confirmed
  2. Apple Reportedly Reviews iPhone 17 Demand as Costs Rise Amid Ongoing Memory Shortage
  3. Interpol Traces $122 Million Crypto Wallet Connected to Romance Scam Network
  4. Hong Kong's Securities and Futures Commission Tightens Anti-Phishing Standards for Crypto Platforms
  5. Itel Zeno 100 Pro India Launch Date Announced as Company Teases Zeno 100 Lite Arrival, Key Features
  6. Sony RX10 V Compact Camera Launched With 20.1-Megapixel Sensor, 4K 120fps Video Recording and 25x Optical Zoom
  7. Motorola Edge 70 Max India Launch Date Announced; Design, Key Features Revealed
  8. Asus Vivobook 14, Vivobook 15 Refreshed With Intel Core Series 3 Processors: Price, Availability
  9. Call of Duty: Black Ops and Black Ops 2 Ports Released on PS4 and PS5
  10. Samsung Galaxy Z Fold 8, Z Fold 8 Ultra Prices Surface Ahead of Unpacked Launch Event
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.