DeepSeek Sensitive data exposed To Web: Wiz report

New York-based cybersecurity firm Wiz has discovered sensitive data from the Chinese AI startup DeepSeek that was accidentally exposed on the internet.

• Alert
• Vulnerabilities

10 New Vulnerabilities Discovered in MediaTek Chipsets

By infosecbulletin / Monday , March 3 2025

MediaTek has released its March 2025 Product Security Bulletin, which highlights new security vulnerabilities affecting various chipsets in smartphones, tablets,...

Read More

• International

Qualcomm’s March 2025 Security Bulletin Highlights Major Vulns

By infosecbulletin / Monday , March 3 2025

Qualcomm's March 2025 Security Bulletin addresses vulnerabilities in its products, including automotive systems, mobile chipsets, and networking devices. It includes...

Read More

• Cyber Attack
• Hot Topic

Cyberattack detected at Polish space agency, minister says

By infosecbulletin / Monday , March 3 2025

On Sunday, Poland Minister for Digitalisation Krzysztof Gawkowski said that Polish cybersecurity services found unauthorized access to the IT infrastructure...

Read More

• Cyber Attack
• Data Breach

Nearly 12,000 API Keys and Passwords Found in Public Datasets

By infosecbulletin / Monday , March 3 2025

Security researchers found that datasets used by companies to develop large language models included API keys, passwords, and other sensitive...

Read More

• Uncategorized

Android Phone’s Unlocked Using Cellebrite’s Zero-day Exploit

By infosecbulletin / Sunday , March 2 2025

Amnesty International’s Security Lab discovered a cyber-espionage campaign in Serbia, where officials used a zero-day exploit from Cellebrite to unlock...

Read More

• Uncategorized

DragonForce Ransomware Targets Saudi Company, 6TB Data Stolen

By infosecbulletin / Saturday , March 1 2025

DragonForce ransomware targets organizations in Saudi Arabia. An attack on a major Riyadh real estate and construction firm led to...

Read More

• Uncategorized

Microsoft Uncovers Hackers Selling Illegal Azure AI Access

By infosecbulletin / Saturday , March 1 2025

Microsoft has filed an amended complaint in recent civil litigation, naming the main developers of malicious tools that bypass the...

Read More

• Uncategorized

By 2025, India’s First Semiconductor Chip to be ready

By infosecbulletin / Friday , February 28 2025

At the Global Investors Summit 2025, Union Minister Ashwini Vaishnaw announced that India’s first indigenous semiconductor chip will be ready...

Read More

• Alert
• Vulnerabilities

CVE-2025-20111
Cisco Warns Vulns in Nexus 3000 and 9000 Series Switches

By infosecbulletin / Thursday , February 27 2025

Cisco has warned of a critical vulnerability, CVE-2025-20111, in several Nexus switch models. This flaw could let attackers remotely crash...

Read More

• Alert

CVE-2025-0475 & CVE-2025-0555
GitLab’s High-Risk Flaw, Patch Now Urgently!

By infosecbulletin / Thursday , February 27 2025

GitLab has released a security advisory, urging all self-managed installations to upgrade to versions 17.9.1, 17.8.4, or 17.7.6 due to...

Read More

In a blog post, Wiz reported that scans of DeepSeek’s infrastructure revealed over a million unsecured data lines. This data contained digital software keys and chat logs that recorded user prompts sent to the company’s free AI assistant.

Wiz’s chief technology officer said DeepSeek quickly secured the data after his firm alerted them.

“They took it down in less than an hour,” Ami Luttwak said. “But this was so simple to find we believe we’re not the only ones who found it.”

DeepSeek did not immediately return a message seeking comment.

DeepSeek’s rapid success with its AI assistant has excited China while worrying the U.S. The company’s ability to compete with OpenAI at a lower cost raises concerns about the profitability of American AI giants like Nvidia and Microsoft.

By Monday, it surpassed ChatGPT in downloads on Apple’s App Store, leading to a global decline in tech stocks.