A ChatGPT API can be given an unlimited number of URLs, even if they’re duplicates, expert warns
If it tries to run the commands, it will create a huge volume of HTTP requests
Researchers urge OpenAI to put safeguards in place
Experts have warned there is a way to make OpenAI’s ChatGPT service engage in Distributed Denial of Service (DDoS) attacks on threat actors’ behalf.
A report from cybersecurity researcher Benjamin Flesch noted the problem lies in ChatGPT’s API’s handling of HTTP POST requests to a specific endpoint. That endpoint allows the user to provide a series of links through the “urls” parameter – without any limits.
