BREAKING
Fake OpenAI Invites Hit Security Firms
How the Poisoned Tenant Works
1
Fake org named after target
↓
2
Invite from noreply@tm.openai.com
↓
3
Passes email authentication
↓
4
Accept grants Owner rights
No URLs, No Attachments
Recent SaaS Notification Abuse
Kaspersky
Jan 2026
●
Scam links in OpenAI org name field
Cisco Talos
Apr 2026
●
GitHub / Jira notification abuse
●
Called Platform-as-a-Proxy
0
%
GitHub emails at peak
Verify Invites, Monitor Memberships
AI NEWS BLITZ
A new attack abuses OpenAI's organization invites to target cybersecurity companies.