Portuguese 
English 
Spanish 
2 min of reading 
0 comments 
DeepSeek, Chinese Artificial Intelligence That Went Viral, Suffered a Data Leak. Security Flaw Raises Alerts About Risks in AI!
In recent days, the artificial intelligence (AI) platform DeepSeek has become a phenomenon in the technology sector, gaining a prominent space in the market and surpassing established competitors. However, a recent security flaw and data leak have placed the Chinese company at the center of a controversy by exposing sensitive user data and platform information.
Critical Flaw and Leak of Sensitive Data
The vulnerability was detected by the Israeli cybersecurity company Wiz, which identified an easy access to a database of the ClickHouse management system used by DeepSeek.
The discovery revealed the exposure of various critical information, including conversation history of users with the chatbot, secret API keys of the platform, metadata of interactions, and backend operating details.
-
Artificial intelligence is skyrocketing energy consumption, raising emissions from tech giants and pushing Google, Microsoft, and Meta closer to natural gas.
-
Mercor paid $1.5 million per day for doctors, lawyers, and former Goldman Sachs bankers to teach artificial intelligence to do their jobs, and in 17 months, it went from zero to $500 million in annual revenue while its own contractors accelerated the replacement of their own work.
-
Casio Unveils Moflin, Robotic Pet With Artificial Intelligence Designed To Provide Emotional Comfort And Simulate A Permanent Affectionate Bond
-
Google Maps Revolutionizes GPS Navigation With Gemini Artificial Intelligence, Ask Maps Feature, and Advanced 3D Visualization for Route and Travel Planning
The most alarming fact is that this data was stored in plaintext, without any form of encryption, facilitating access by malicious intruders.
According to Wiz, the vulnerability was quickly resolved after the company contacted DeepSeek. However, the Chinese startup has yet to make an official statement about the incident.
Impact and Risks for DeepSeek Users
The data leak at DeepSeek raises important questions about the security of artificial intelligence platforms, especially those using APIs widely adopted by companies and developers.
According to experts, a breach of this level could allow unauthorized access to sensitive information, increasing the risk of data theft, industrial espionage, and more sophisticated cyberattacks.
Earlier this week, DeepSeek reported that it suffered “malicious attacks against its servers”, without specifying whether there was an actual breach or just an attempt to overload the system.
The lack of clarification from the Chinese company raises concern among users, who now question the security of their information on the platform.
The Wiz Alert for Companies and Users About Using AI
Wiz concluded its report by warning companies and users about the risks associated with the accelerated adoption of AI-based technologies.
According to specialists, it is essential that companies using the DeepSeek API or other AIs review their security protocols and avoid feeding these platforms with confidential data without a careful assessment of the associated risks.
The case reinforces the need for more rigorous protection measures to ensure user privacy and prevent future leaks.
DeepSeek, which recently gained prominence on the global stage, will need to demonstrate commitment to digital security to maintain the trust of the public and its business partners.
Seja o primeiro a reagir!