\u2014 OpenAI (@OpenAI) April 30, 2026<\/a> <\/p>\n Why OpenAI Is Strengthening Account Security?<\/p>\n As AI tools become deeply embedded in personal and professional workflows, user accounts are holding more sensitive data than ever before. OpenAI<\/a> says many users rely on ChatGPT for confidential work, research, and personal queries, making them attractive targets for cyber attacks<\/a>.<\/p>\n The company highlighted that certain groups face even greater risks, including:<\/p>\n Journalists and researchers handling sensitive information.<\/p>\n Government officials and political figures.<\/p>\n Human rights activists and dissidents.<\/p>\n Users who are generally security conscious.<\/p>\n OpenAI stated, \u201cPeople are turning to AI for deeply personal questions and increasingly high-stakes work,\u201d emphasizing the growing importance of strong account protection.<\/p>\n Passwords Are Gone in This New Mode<\/p>\n One of the most notable changes is the complete removal of password based login systems. Instead, users must rely on:<\/p>\n Hardware security keys such as USB based devices.<\/p>\n Software passkeys stored on personal devices.<\/p>\n These methods are considered phishing resistant, meaning attackers cannot easily steal access through fake emails or login pages.<\/p>\n The system also blocks common attack methods like:<\/p>\n \t\t\t\t\t Subscribe To Our Newsletter!<\/p>\n Be the first to get exclusive offers and the latest news.<\/p>\n Stricter Account Recovery with Trade Offs<\/p>\n While the new system improves security, it also introduces serious limitations for account recovery. Users can no longer recover accounts using:<\/p>\n Email verification.<\/p>\n SMS-based codes.<\/p>\n Instead, recovery depends entirely on:<\/p>\n Backup security keys or passkeys.<\/p>\n Recovery keys issued during setup.<\/p>\n OpenAI has made it clear that its support team cannot help recover accounts if users lose access to these methods. This decision is meant to prevent attackers from exploiting support channels through social engineering.<\/p>\n To reduce risk, users must set up:<\/p>\n At least two security methods, such as two hardware keys or a mix of key and passkey.<\/p>\n A secure backup recovery key stored safely.<\/p>\n Additional Security Enhancements<\/p>\n Beyond login protection, the feature introduces several other safeguards:<\/p>\n Shorter login sessions to limit exposure if a device is compromised.<\/p>\n Real time alerts for new account logins.<\/p>\n A dashboard to monitor and manage active sessions across devices.<\/p>\n Another important change is related to privacy. Conversations from accounts with Advanced Account Security enabled are automatically excluded from AI model training, removing the need for manual opt out.<\/p>\n Partnership with Yubico for Security Keys<\/p>\n To make hardware security more accessible, OpenAI has partnered with Yubico, a well known security company. Users can purchase a discounted bundle that includes:<\/p>\n YubiKey C Nano for everyday use.<\/p>\n YubiKey C NFC as a backup option.<\/p>\n The bundle is priced at 68 dollars and is available through the security settings page. However, users are free to use any compatible FIDO certified security key.<\/p>\n Inspired by Industry Standards<\/p>\n The new feature follows a broader trend in the tech industry. Similar programs, like Google\u2019s Advanced Protection system, have been around for years and were designed after major phishing attacks targeted high profile accounts.<\/p>\n OpenAI clarified that this launch is not a response to any specific breach, but rather a proactive step to prepare for future threats as AI adoption continues to grow rapidly.<\/p>\n Requirement for Cybersecurity Program Members<\/p>\n![\"Newsletter\"](\"https:\/\/www.europesays.com\/ai\/wp-content\/uploads\/2026\/04\/newsletter.png\")
<\/p>\n