DeepSeek, a Chinese startup, has made headlines with its new AI chatbot that quickly topped the charts in US app stores. However, concerns have been raised about the security and origin of the training data used to develop the chatbot. The company has been accused of using OpenAI’s ChatGPT model without permission, which has led to memes and criticism.
The Italian privacy regulator GPDP has demanded answers from DeepSeek regarding the personal data collected, its training data, and how it is stored on servers in China. Additionally, researchers at Wiz have discovered a publicly accessible database belonging to DeepSeek that contains sensitive information, including chat history and API secrets.
This oversight puts users and developers at risk, as the database was not only accessible but also allowed anyone with access to control and escalate privileges within the environment. This highlights the growing concern about data security in AI development, where speed often takes precedence over proper security measures.
As experts warn, the need for rapid developments in this field can lead to previously unseen privacy risks. Users are advised to be cautious when feeding their AI chatbots with information, as it may find its way to unwanted and insecure destinations. By being mindful of these risks, individuals can protect themselves and their families’ personal information from cybersecurity threats.
Source: https://www.malwarebytes.com/blog/news/2025/01/the-deepseek-controversy-authorities-ask-where-the-data-comes-from-and-where-it-goes