DeepSeek Data Leak: Open Database Exposes Sensitive Information
A Wiz Research investigation has uncovered a critical vulnerability in the Chinese AI app DeepSeek. The platform’s database was left publicly accessible, leading to the exposure of secret keys, chat histories, and other sensitive information.
What Happened?
DeepSeek, a Chinese startup, has recently catapulted into the limelight with its groundbreaking AI model, causing the stock prices of global tech giants to tumble. However, its meteoric rise has been shadowed by serious security shortcomings. A team from Wiz Research uncovered an unprotected ClickHouse database owned by DeepSeek. This database was publicly accessible, enabling hackers to seize complete control over the company's internal operations.
The exposed database contained over a million entries, including:
- user chat logs;
- confidential API keys;
- details about DeepSeek’s backend infrastructure;
- highly sensitive information about users, including personal data.
Alarmingly, this breach could allow unauthorized access to escalate privileges within DeepSeek’s systems, potentially letting third parties manipulate the company's internal processes.
How Was the Leak Uncovered?
Investigators at Wiz Research began exploring vulnerabilities within DeepSeek by examining its public-facing domains. During their analysis, they discovered a significant number of open ports (8123 and 9000) on servers like oauth2callback.deepseek.com and dev.deepseek.com. These open ports granted access to an unprotected ClickHouse database, enabling unrestricted execution of SQL queries.
Upon executing a simple SHOW TABLES; query, the team found a table named log_stream, which was filled with extensive logs of activity, including:
- timestamps from user messages,
- interactions with DeepSeek's internal APIs,
- chat histories, API keys, and operational data.
Most of DeepSeek's ports were left unprotected. Source: wiz.io
Большинство портов DeepSeek не защищены от внешнего доступа — GNcrypto
DeepSeek Leaked Personal Data — The Coinomist
This vulnerability exposes not only DeepSeek but also all of its clients to significant dangers. Hackers could potentially read messages, steal passwords, personal files, and access other confidential data.
What Does This Mean for Users?
The DeepSeek data breach is a stark reminder that the rapid expansion of AI technology often comes at the cost of security. In the race to stay ahead, companies rush to deploy cutting-edge solutions, sometimes neglecting fundamental data protection measures. In this case, DeepSeek’s failure to secure its database led to a serious exposure of users’ personal information.
This incident reinforces the importance of practicing strong digital security:
- Use complex passwords and enable two-factor authentication (2FA).
- Be mindful of the data you share with AI chatbots.
- Avoid providing sensitive information to AI-powered services.
DeepSeek’s security lapse serves as a wake-up call for anyone using AI applications, emphasizing the need for greater vigilance when it comes to protecting personal data.
The content on The Coinomist is for informational purposes only and should not be interpreted as financial advice. While we strive to provide accurate and up-to-date information, we do not guarantee the accuracy, completeness, or reliability of any content. Neither we accept liability for any errors or omissions in the information provided or for any financial losses incurred as a result of relying on this information. Actions based on this content are at your own risk. Always do your own research and consult a professional. See our Terms, Privacy Policy, and Disclaimers for more details.
Articles by this author
