Huge spike in usage and charges

Yesterday and today, I experienced a sudden surge in usage on my account that racked up about 200 dollars of API charges. This also significantly exceeded the monthly usage limit I have set of 65 dollars, which I was previously nowhere close to reaching.

I can only assume my API key was compromised somehow. I have since disabled all my keys and sent a message to support about the situation, and am waiting to hear back.

I wanted to know what I should expect from this. How long does OpenAI support usually take to get back to people? Once I hear from them, will the balance incurred be forgiven, or will I still be on the hook? Should I take any other security measures in case of other compromised information?

Bold assumption that they’d get back to you at all. They usually take a few weeks, maybe over a month to get back to folks. At least, that’s the average time from what I’ve seen on here.

Change passwords. If your key was compromised, this could mean someone either logged into an account of yours, or your code somewhere accidentally leaked it. Either way, when something like this happens, it’s best to reset as many passwords as you can just to be on the safe side and boot any malicious actors.

Also, ChatGPT has 2FA if you haven’t set that up already.

I wish you the best of luck! Hopefully things get figured out and settle down.