Chinese AI company DeepSeek has fixed an exposed back-end database that was spilling sensitive information, including user chat histories and API keys, to the open internet. The DeepSeek database was not protected with a password, allowing anyone on the internet to access more than a million unencrypted logs inside.
Security researchers at cloud giant Wiz said they found the exposed database and alerted DeepSeek, which soon after took the database offline. According to Wired, the Wiz researchers said the exposed chat logs were in Chinese but easily translated. It’s not yet known if anyone else, other than Wiz, found the database before it was secured, nor is it known for how long the database was exposed. DeepSeek did not respond to a request for comment.
Misconfigured databases are often caused by human error, rather than due to malicious intent. DeepSeek has seen viral popularity since its public launch in December.
US lawmakers urge UK spy court to hold Apple ‘backdoor’ secret hearing in public
A group of bipartisan U.S. lawmakers are urging the head of the U.K.’s surveillance court to hold an open hearing...
Kerry Washington invests in wedding marketplace Cheersy
Kerry Washington is expanding her angel investment portfolio, serving as lead investor in the pre-seed round of the wedding marketplace...
UK’s secret iCloud backdoor order triggers civil rights challenge
The U.K. government’s secret order to Apple demanding it backdoor the end-to-end encrypted version of its iCloud storage service has...
Trump family is reportedly in talks to acquire stake in Binance’s US arm
President Trump’s family has been weighing an investment in Binance.US, according to a report from the Wall Street Journal. The...
