DeepSeek’s troubles continue to persist as the discredited AI app suffered a mass data leak, exposing the sensitive records of over one million users.
Researchers accessed a publicly accessible database belonging to DeepSeek which allowed full control over database operations – including the ability to access internal data.
The best VPNs are often seen as an effective protector against privacy and security risks, but they will struggle to mitigate the dangers of DeepSeek.
This is not the first cybersecurity attack DeepSeek has suffered, falling victim to a large-scale attack just a week after it launched. Experts have expressed serious concerns over DeepSeek’s privacy and security practices, and many have asked if DeepSeek is safe to use.
DeepSeek has now been banned by numerous countries and organizations, and the latest data leak simply reinforces the dangers the app poses.
One million users affected
Following DeepSeek’s rapid rise in popularity, cloud security company Wiz investigated the app’s security credentials and looked to identify any potential vulnerabilities.
Two databases were exposed with over one million lines of log streams containing chat history, API Keys, backend details, and other highly sensitive information was uncovered.
More critically, the exposure allowed for full database control and potential privilege escalation within the DeepSeek environment.
Source: Tom’s Guide