I’m reaching out once again regarding an urgent and unresolved issue concerning unauthorized API usage on my account, which has resulted in excessive and unaccounted charges. Despite previous discussions with your support team, I am still unable to obtain satisfactory clarification or resolution. Below, I will summarize the details and the actions I am requesting:
Issue Overview:
Irregular and Untraceable Usage: We have observed approximately 315,000 API requests made under “No API Key ID” during March 2025, leading to unexpected charges that we did not authorize or track.
This is a clear indication of potential unauthorized access or a security breach of our account, as we did not approve or initiate this level of activity.
Previous Correspondence:
I’ve previously communicated with Yuri from OpenAI Support, who recommended rotating API keys and updating account security settings, which I have already done. However, the main concerns related to untracked usage and the unexpected financial impact have not been addressed satisfactorily.
Key Concerns:
Unauthorized API Usage: We have no record of 315,000 requests made under “No API Key ID.” This suggests either a breach of our account or an issue with the API’s tracking mechanism.
Unaccounted-for Expenses: The charges from March 2025 have escalated beyond $1,000 per day, which is financially unsustainable for our team. Our typical monthly charges range between $500 to $1,000, and this sudden spike starting from November 2024 and peaking in March 2025 is abnormal and alarming.
Requests for Immediate Action:
Investigation into Unauthorized Usage: I am requesting a detailed breakdown of the requests made under “No API Key ID”, including:
The source of these requests.
Any external integrations or applications that may have triggered these charges.
Access logs or any indication of suspicious activity during the affected period.
Identification of API Key Ownership: The following API keys have been associated with high usage, and I am unable to track them through my account:
2 keys
Please confirm which team member or account these keys belong to, as I need this information to understand if the usage is legitimate or unauthorized.
Refund or Credit for Unauthorized Charges: Given that the excessive charges are not authorized by us, I request a full refund or account credit for the period from November 2024 to March 2025, especially the charges incurred after March 20th, 2025.
Context and History of the Issue:
Account activity has shown consistent usage in the $500–$1,000 range until November 2024, at which point the charges began to increase dramatically.
March 2025 has seen daily charges exceeding $1,000 per day, an unsustainable and unexpected financial burden.
Request for Resolution:
I kindly ask for urgent investigation and resolution of this issue, as the current charges are unjustified and financially devastating to our team. If any further security measures are required from my side, please let me know.
I am hoping to resolve this issue as quickly as possible to prevent further financial loss and ensure our account’s security.