Journalists, executives, and anyone else who could be a deliberate phishing target now have an extra option for locking down their OpenAI accounts. The company is rolling out Advanced Account Security - an opt-in feature for ChatGPT and Codex users who consider their accounts higher-risk than average.
The feature follows the model Google established with its Advanced Protection Program in 2017: give high-risk users access to stricter authentication requirements, making it significantly harder for an attacker to get in even if they manage to steal a password. OpenAI hasn't published a full technical breakdown of which authentication methods are included, but the specific focus on phishing suggests hardware security keys or similarly strong second-factor options will be central to it.
The practical audience is anyone using ChatGPT to handle sensitive client information, legal work, financial data, or proprietary research - situations where unauthorized access could cause real damage beyond just a locked account. The opt-in nature means most users will never encounter this setting, but it signals that OpenAI is taking the idea of targeted attacks on specific users seriously, rather than treating account security as a one-size-fits-all problem. Wired covered the rollout with more details on availability.