DeepSeek Data Exposed to Web, Cybersecurity Firm Says

5Mind. The Meme Platform
The Epoch Times Header

The exposed data included digital software keys and chat logs, according to cybersecurity firm Wiz.

Researchers with cybersecurity company Wiz said on Wednesday that sensitive information from the Chinese artificial intelligence (AI) app DeepSeek was inadvertently exposed to the open internet.

Hangzhou-based DeepSeek prompted a global selloff in tech shares last week when it launched its free, open-source language learning model DeepSeek-R1.

DeepSeek’s flagship v3 model cost $5.6 million to train, amounting to a fraction of the money spent by America’s leading tech companies to train models including OpenAI’s ChatGPT.

The popular app has also raised national security concerns in Washington.

In a blog post, Wiz said it set out to assess the external safety of the chatbot and identify any potential vulnerabilities after it saw a surge in registrations and became the most downloaded free app on Apple’s App Store last week.

Within minutes, researchers with the New York-based cybersecurity company found a publicly accessible database linked to the chatbot that was “completely open and unauthenticated” and “exposing sensitive data,” Wiz said.

The database contained more than a million lines of data that were left unsecured, according to Wiz.

This included sensitive information, along with digital software keys, and chat logs that appeared to capture prompts being sent from users to the company’s free AI assistant, according to the cybersecurity company.

“More critically, the exposure allowed for full database control and potential privilege escalation within the DeepSeek environment, without any authentication or defense mechanism to the outside world,” the blog post stated.

Wiz said the level of access posed a critical risk to DeepSeek’s security as well as to its end-users, including allowing bad actors to retrieve sensitive information and plain-text chat messages.

Additionally, the vulnerabilities could allow bad actors to exfiltrate plaintext passwords, Wiz said.

The Wiz Research team “immediately and responsibly disclosed the issue to DeepSeek, which promptly secured the exposure,” according to the blog post.

Wiz noted that the widespread and fast adoption of AI by companies poses ongoing risks, particularly for those that have “rapidly grown into critical infrastructure providers without the security frameworks that typically accompany such widespread adoptions.”

By Katabella Roberts

Read Full Article on TheEpochTimes.com

Contact Your Elected Officials
The Epoch Times
The Epoch Timeshttps://www.theepochtimes.com/
Tired of biased news? The Epoch Times is truthful, factual news that other media outlets don't report. No spin. No agenda. Just honest journalism like it used to be.

Ring That Bell

If I could travel back in time to 1776,...

Thoughts On America 250

Before you, American reader, is the honor, blessing, and privilege of celebrating the 250th anniversary of our nation. A nation toward which God has been merciful, shining His great grace.
00:09:03

Two birthdays apart

The Bicentennial was not just a commemoration of 200 years of independence – it was a coast‑to‑coast block party of red, white and blue.
00:02:31

Is Charlie Kirk’s Assassination Looking More Like a Conspiracy?

Enough videos have been posted to the internet, plenty...

Is There a 9/11 WTC and 9/10 Charlie Kirk Connection?

Strange parallels in online stories raise questions about whether Israelis and Mossad intelligence are our allies or adversaries.

TSA Chief Nominee Says Limiting Shutdown Disruptions Will Be a Priority

TSA chief nominee David Cummins told senators that he would work to minimize disruptions to both travel and employee pay, should the government shut down again this October.
00:29:25

DHS Issues Funding Warning to States That Don’t Purge Voter Rolls

DHS Sec. Markwayne Mullin said that states that do not purge their voter rolls of potentially ineligible voters and noncitizens could lose funding.
00:47:46

Rubio Announces Visa Curbs Targeting ‘Far-Left Terrorist’ Groups

Secretary of State Marco Rubio has announced a new visa restriction policy targeting members of “far-left terrorist” organizations and allied groups.
00:25:44

Trump Says China Illicitly Obtained 220 Million US Voter Files Since 2020 Election

President Trump announced the declassification of information that he alleged reveal large-scale Chinese hacking of American voter information.
00:25:44

Trump Says China Illicitly Obtained 220 Million US Voter Files Since 2020 Election

President Trump announced the declassification of information that he alleged reveal large-scale Chinese hacking of American voter information.

Trump Warns of Global Spread of Communism at NATO Summit

President Trump reiterated his warnings about communism during the NATO summit in Ankara on July 8, saying he believes it’s taking root in the US and around the world.

Trump Arrives in Ankara to Meet With NATO Allies

It marks the first visit to Turkey by a...
spot_img

Related Articles

Popular Categories

MAGA Business Central