OpenAI, the US government and Persona built an identity surveillance machine

Internet sleuths dropped a bomb: a report claims OpenAI, the U.S. government, and identity-check firm Persona are tied up in a selfie-powered watchlist machine, complete with code names like “SelfieSuspiciousEntityDetection.” The smoking gun? Two spooky hostnames — “openai-watchlistdb” — found via Shodan (a tool that lists exposed servers), plus publicly served source files on a government endpoint. Cue the comment chaos. One user begged, “What can those do from a separate country,” while another answered with the bleakest shrug: “No.” Meanwhile, someone asked, “Why the myspace music?” turning paranoia into punchline.<br><br>But there’s pushback. A level-headed commenter pointed to Persona’s official post-incident review, saying it was a non-production test domain with exposed source maps, not a live spy rig, and flagged a Twitter back-and-forth from Persona’s CEO Rick. The thread split fast: Team “We’re being re-screened like suspects” vs Team “This is just KYC (know-your-customer) and compliance like banks do.” The fed-friendly acronym soup (FedRAMP = government cloud rules, SAR = suspicious activity report) only fueled the mood. And yes, “SelfieSuspiciousEntityDetection” instantly became a meme — “say cheese to the Feds” — as users wrestled with the uneasy idea that chatting with AI might start with handing over your face.