< Back to Scams and Phishing
A phishing email is circulating that impersonates OpenAI’s ChatGPT Plus billing department, attempting to trick users into updating their payment details on a fraudulent website. The fake email urges users to “update your payment method” to prevent service interruption.
Key Indicators of Phishing
-
Suspicious Sender Address
-
The “From” email is dule9xpro@gmail.com, not an official OpenAI domain such as @openai.com or @stripe.com.
-
Legitimate ChatGPT billing or subscription messages will never come from a Gmail address.
-
-
Urgency and Fear Tactics
-
The subject line “Action Required: Update Your Payment Method for ChatGPT Plus” attempts to create a sense of urgency and pressure users into clicking the link without verifying its authenticity.
-
-
Fake Link and Redirection
-
Hovering over the “Update Payment Method” button reveals a non-OpenAI domain (https://zrp.io/...) that redirects to another fake payment page.
-
The phishing page’s domain is capstonhomes.com.au, which is unrelated to OpenAI and is being used maliciously to collect payment data.( This also indicates that captonehome was hacked)
-
What Happens if You Click
Victims who enter their payment details on the fake site risk:
-
Credit card theft
-
Identity fraud
-
Possible Compromise of OpenAI account credentials
How to Stay Safe
✅ Always verify the sender’s email domain (@openai.com).
✅ Never enter payment details on pages that don’t belong to openai.com or chat.openai.com.
✅ Report phishing attempts to support@openai.com.
✅ Delete the message immediately if you receive it or report it as spam.
