Excerpt from Times of India Article, Published on Jan 30, 2025.
DeepSeek, the Chinese AI startup that recently made waves in the tech world, faced a significant data security lapse, according to a report by New York-based cybersecurity firm Wiz. The firm discovered that a publicly accessible ClickHouse database linked to DeepSeek exposed over a million lines of highly sensitive data, including chat logs, API secrets, and backend operational details. In a blog post, Wiz explained that its research team quickly identified the open database during a security assessment. “Within minutes, we found a completely unauthenticated database exposing sensitive data,” Wiz stated, highlighting concerns about the company’s security practices.
However, DeepSeek responded promptly. The company reportedly secured the exposed database within an hour of being alerted. Wiz CTO Ami Luttwak acknowledged DeepSeek’s swift action, stating, “They took it down in less than an hour. But this was so simple to find that we believe we’re not the only ones who found it,” as per Reuters. This incident comes at a pivotal time for DeepSeek, which has recently gained immense traction with its DeepSeek AI Assistant, surpassing OpenAI’s ChatGPT in App Store downloads. The company’s rise has been fueled by its ability to deliver advanced AI services at a significantly lower cost compared to its U.S. counterparts.
Despite the company’s swift response, the incident underscores the need for robust cybersecurity frameworks, particularly for rapidly growing AI-driven firms handling sensitive data. Such breaches can pose risks not only to user information but also to operational integrity. DeepSeek affirmed its commitment to strengthening data protection protocols and maintaining transparency with stakeholders. The company assured users that steps are underway to prevent future incidents and safeguard data integrity. This event serves as a stark reminder for AI companies to prioritize cybersecurity alongside innovation.
To delve deeper into this topic, please read the full article Times of India.
