{"id":45779,"date":"2026-02-19T12:41:19","date_gmt":"2026-02-19T12:41:19","guid":{"rendered":"https:\/\/agooka.com\/news\/technologies\/is-chatgpt-spying-for-the-feds-the-53mb-leak-behind-openais-id-checks\/"},"modified":"2026-02-19T12:41:19","modified_gmt":"2026-02-19T12:41:19","slug":"is-chatgpt-spying-for-the-feds-the-53mb-leak-behind-openais-id-checks","status":"publish","type":"post","link":"https:\/\/agooka.com\/news\/technologies\/is-chatgpt-spying-for-the-feds-the-53mb-leak-behind-openais-id-checks\/","title":{"rendered":"Is ChatGPT spying for the feds? The 53MB leak behind OpenAI\u2019s ID checks"},"content":{"rendered":"<p><img decoding=\"async\" src=\"https:\/\/dataconomy.com\/wp-content\/uploads\/2026\/02\/Is-ChatGPT-spying-for-the-feds.jpg\" alt=\"Is ChatGPT spying for the feds? The 53MB leak behind OpenAI\u2019s ID checks\" title=\"Is ChatGPT spying for the feds? The 53MB leak behind OpenAI\u2019s ID checks\"\/><\/p>\n<p>A massive data exposure has allegedly pulled back the curtain on a secret surveillance pipeline linking OpenAI, the identity provider Persona, and the U.S. Federal Government.<\/p>\n<h2>Is ChatGPT spying for the feds?<\/h2>\n<p>According to a report published by researchers <strong>vmfunc<\/strong>, <strong>MDL<\/strong>, and <strong>Dziurwa<\/strong>, the identity verification firm Persona accidentally exposed its entire internal codebase via unprotected source maps on a government-authorized server (<code>withpersona-gov.com<\/code>).<\/p>\n<blockquote>\n<p>&gt; be nerds<br \/>&gt; look into persona (used by discord)<br \/>&gt; kyc (know your customer) service<br \/>&gt; used for age verification<br \/>&gt; search on internet (shodan)<br \/>&gt; find weird server<br \/>&gt; image 1<br \/>&gt; openai-watchlistdb.withpersona<br \/>&gt; openai-watchlistdb-testing.withpersona<br \/>&gt; lolwtf<br \/>&gt; look inside<br \/>&gt; supposed\u2026 pic.twitter.com\/3Cdl3vSxAg<\/p>\n<p>\u2014 vx-underground (@vxunderground) February 18, 2026<\/p>\n<\/blockquote>\n<p>The exposure\u2014found on a <strong>FedRAMP-authorized<\/strong> endpoint\u2014reportedly allows anyone to reconstruct over 2,400 original TypeScript files, detailing exactly how the platform processes user biometrics and files reports to federal agencies.<\/p>\n<h2>Key allegation: WatchlistDB<\/h2>\n<p>The researchers claim that OpenAI\u2019s identity verification is not a simple \u201csafety check\u201d but a sophisticated screening engine that has been operational since <strong>November 2023<\/strong>. Notable findings include:<\/p>\n<ul>\n<li><strong>WatchlistDB:<\/strong> A dedicated infrastructure (<code>openai-watchlistdb.withpersona.com<\/code>) used to screen millions of users monthly.<\/li>\n<li><strong>Suspicious Entity Detection:<\/strong> Internal code references to <code>SelfieSuspiciousEntityDetection<\/code>, an AI model that flags faces as \u201csuspicious\u201d without user disclosure.<\/li>\n<li><strong>Public figure matching:<\/strong> Alleged automated checks that compare user selfies against a database of world leaders and their families to assign \u201csimilarity scores.\u201d<\/li>\n<\/ul>\n<h2>The federal pipeline: Project SHADOW &amp; ONYX<\/h2>\n<p>Perhaps the most controversial discovery is the \u201cDirect File\u201d capability built into the Persona dashboard. The code reportedly contains a module for filing <strong>Suspicious Activity Reports (SARs)<\/strong> directly to the <strong>U.S. Treasury (FinCEN)<\/strong> and <strong>FINTRAC<\/strong> in Canada.<\/p>\n<blockquote>\n<p>\u201cThe form lets filers tag their reports as related to specific intelligence operations by name\u2026 Project ANTON, Project LEGION, Project SHADOW. They are hardcoded in the dropdown.\u201d<\/p>\n<\/blockquote>\n<p>The report also highlights a new subdomain, <code>onyx.withpersona-gov.com<\/code>, which appeared just 12 days ago. This matches the name of <strong>Fivecast ONYX<\/strong>, an AI surveillance tool purchased by <strong>ICE<\/strong> for $4.2 million to build digital footprints and track \u201cviolent tendencies.\u201d<\/p>\n<p>The leaked source maps allegedly reveal that Persona performs <strong>269 distinct checks<\/strong> during a single verification. These include:<\/p>\n<table>\n<thead>\n<tr>\n<th>Category<\/th>\n<th>Check Details<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td><strong>Biometrics<\/strong><\/td>\n<td>Liveness detection, spoof risk, and Public Figure matching.<\/td>\n<\/tr>\n<tr>\n<td><strong>Metadata<\/strong><\/td>\n<td>PDF annotation detection, JPEG original image verification.<\/td>\n<\/tr>\n<tr>\n<td><strong>External<\/strong><\/td>\n<td>AAMVA lookup (Driver\u2019s Licenses), SSA Death Master File matching.<\/td>\n<\/tr>\n<tr>\n<td><strong>Crypto<\/strong><\/td>\n<td>Risk scoring for wallets via Chainalysis and TRM Labs.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>The researchers argue that this infrastructure creates a massive legal exposure under the <strong>Illinois Biometric Information Privacy Act (BIPA)<\/strong>. While companies claim 1-year data retention, the leaked code allegedly shows <strong>3-year retention<\/strong> for biometric face lists, and \u201cpermanent\u201d storage for government ID photos.<\/p>\n<h4>The researchers\u2019 warning:<\/h4>\n<p>\u201cIf someone asks you to take a selfie to prove you\u2019re human, ask yourself who\u2019s on the other side of that camera, and what list you just landed on. Knowledge is the only real currency.\u201d<\/p>\n","protected":false},"excerpt":{"rendered":"<p>A massive data exposure has allegedly pulled back the curtain on a secret surveillance pipeline linking OpenAI, the identity provider Persona, and the U.S. Federal Government. Is ChatGPT spying for the feds? According to a report published by researchers vmfunc, MDL, and Dziurwa, the identity verification firm Persona accidentally exposed its entire internal codebase via [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":45780,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[37],"tags":[],"class_list":{"0":"post-45779","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-technologies"},"_links":{"self":[{"href":"https:\/\/agooka.com\/news\/wp-json\/wp\/v2\/posts\/45779","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/agooka.com\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/agooka.com\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/agooka.com\/news\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/agooka.com\/news\/wp-json\/wp\/v2\/comments?post=45779"}],"version-history":[{"count":0,"href":"https:\/\/agooka.com\/news\/wp-json\/wp\/v2\/posts\/45779\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/agooka.com\/news\/wp-json\/wp\/v2\/media\/45780"}],"wp:attachment":[{"href":"https:\/\/agooka.com\/news\/wp-json\/wp\/v2\/media?parent=45779"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/agooka.com\/news\/wp-json\/wp\/v2\/categories?post=45779"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/agooka.com\/news\/wp-json\/wp\/v2\/tags?post=45779"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}