A race condition in the redis-py client library caused ChatGPT to serve cached data belonging to other users. Some users saw titles from strangers' chat histories, and payment-related information of about 1.2% of ChatGPT Plus subscribers active during a nine-hour window was exposed — names, emails, billing addresses, and the last four digits of credit cards.
OpenAI took ChatGPT offline, lost hours of chat history, and notified affected subscribers of exposed personal and partial payment data.
Session-scoped cache isolation and concurrency testing of shared caching layers in AI serving infrastructure catch cross-user leakage before production.
Guardion enforces policy on every agent action inline — with visibility, tamper-evident evidence, and DLP for agents and MCPs.
Request a demo