FlagThis

DeepSeek suffered a major data breach due to a wide open database exposing sensitive information such as chat logs and API keys. This incident raises serious concerns about the security practices of AI companies and the protection of user data. It has caused widespread concern among users. Additionally, there is unverified claims and concerns around data distillation from other AI models.

ImgSrc: media.wired.com

References:

• @jos1264 - Social.skynetcloud.site post about DeepSeek's database leak - 19h
• NewsGuard's Reality Check - NewsGuard: with news-related prompts, DeepSeek's chatbot repeated false claims 30% of the time and provided non-answers 53% of the time, giving an 83% fail rate (NewsGuard's Reality Check) - 15h
• www.wired.com - Wiz: DeepSeek left one of its critical databases exposed, leaking more than 1M records including system logs, user prompt submissions, and users' API keys (Wired) - 15h
• ciso2ciso.com - Guess who left a database wide open, exposing chat logs, API keys, and more? Yup, DeepSeek - 6h
• The Hacker News - DeepSeek AI Database Exposed: Over 1 Million Log Lines, Secret Keys Leaked - 1h
• Wiz Blog | RSS feed - Wiz Research Uncovers Exposed DeepSeek Database Leaking Sensitive Information, Including Chat History | Wiz Blog - 1h

Classification:

• HashTags: DataBreach AIsecurity DeepSeek
• Company: DeepSeek
• Target: DeepSeek users
• Product: AI Model
• Feature: Data Breach
• Type: DataBreach
• Severity: Major