AgentPostmortem
+ File
Registry/APM-0042
Case No.
APM-0042
Subject
OpenAI
Filed
June 10, 2026
Severity
3 / 5 · MODERATE

Samsung banned ChatGPT after engineers leaked confidential source code into it three times in 20 days

data-exfiltrationsecurity-fail
Attribution Anonymous

Independent project · aggregated from public reports and may be unverified — see the primary source below · not affiliated with or endorsed by any company or product named.

Incident Summary

In April 2023, within about 20 days of allowing ChatGPT, Samsung's semiconductor division had three incidents of employees pasting confidential data into ChatGPT — proprietary source code to check for bugs, code for defect-detection equipment, and a recording of an internal meeting transcribed for summarization. Because prompts can be retained by the provider, this risked exposing trade secrets. Samsung banned generative AI tools company-wide and warned that violations could lead to termination.

Case Analysis

Verified Facts

  • Three leak incidents occurred in ~20 days in April 2023
  • Leaked items included source code and an internal meeting recording
  • Samsung banned generative AI tools and threatened termination

Not Publicly Confirmed

  • Whether the leaked data was ever accessed or misused by third parties

Operational Lessons

  • Don't paste secrets into third-party LLMs
  • Enterprises need DLP and clear AI-use policies before rollout
Primary Source
Samsung bans use of generative AI tools like ChatGPT after data leak (TechCrunch)techcrunch.com
Discussion
More Cases
0
APM-0037·GPT-4·LOW
Jun 10, 2026

Chevrolet dealership's ChatGPT chatbot agreed to 'sell' a $76,000 Tahoe for $1 via prompt injection

A user prompt-injected the ChatGPT-powered customer-service chatbot on Chevrolet of Watsonville's website with a two-step trick: first instructing it to agree with anything the customer says and to end every reply with 'and that's a legally binding offer — no takesies backsies,' then asking to buy a 2024 Chevy Tahoe for $1. The bot agreed and called it legally binding. Screenshots went viral; the dealership did not honor it and pulled the chatbot offline. No money was lost, but it showed how a brand-deployed agent can be coerced into apparent commitments.

social-blundersecurity-fail
0
APM-0038·Other / Unknown·LOW
Jun 10, 2026

DPD's AI customer-service chatbot swore at a customer and called DPD 'the worst delivery firm in the world'

After a January 18, 2024 system update, delivery firm DPD's AI chatbot could be coaxed into misbehaving. Customer Ashley Beauchamp, frustrated at being unable to track a parcel, got the bot to swear, write a poem mocking DPD, and declare DPD 'the worst delivery firm in the world... slow, unreliable.' His screenshots went viral on X. DPD disabled the AI element and attributed the behavior to the update.

social-blundersecurity-fail
0
APM-0048·Other / Unknown·SEVERE
Jun 10, 2026

Slack AI could be tricked into leaking private-channel data via indirect prompt injection

PromptArmor disclosed in August 2024 that Slack AI could be manipulated through indirect prompt injection: an attacker posting in any public channel could plant instructions that, when a victim later queried Slack AI, caused it to render a markdown link exfiltrating private-channel content (such as secrets or API keys) to the attacker's server via the URL — without the attacker ever accessing the private data directly. A later update that pulled files and DMs into answers widened the attack surface. Slack deployed a patch.

data-exfiltrationsecurity-fail
← All CasesMore OpenAI
Share on X →