Cybersecurity firms targeted by fraudulent OpenAI organization invites

In the Poisoned Tenant campaign, threat actors are sending fraudulent OpenAI invitations that impersonate legitimate organizations to trick employees into sharing sensitive corporate data. By utilizing legitimate notification infrastructure and adding payment methods to these fake accounts, attackers attempt to deceive targets into adopting compromised workspaces as genuine platforms.