- A leaky DeepSeek database discovered by researchers
- The database allowed for total operation control takeover
- An attacker could extract passwords, chat logs, and more
Not long after emerging onto the AI scene and significantly disrupting the US tech markets, a leaky DeepSeek database has reportedly been discovered online.
The ClickHouse database that belongs to DeepSeek was found by Wiz cybersecurity researchers, and allowed for full database operations controls.
The database has since been secured, but the researchers warn it could have exposed chat history, secret keys, backend details, log streams, API Secrets, and operational details.
DeepLeak
The leaky database was apparently found within minutes of Wiz beginning its research, with the researchers noting that if exploited, the database operations would allow an attacker to escalate privileges within the DeepSeek environment.
The vulnerability was discovered after two open ports were found that lead directly to the ClickHouse database without any authentication checks. Upon further investigation, the researchers discovered they were able to run commands in the HTTP interface to access over 1 million sensitive log entries.
If abused by an attacker, the database could be exploited to access plaintext passwords, chat histories, API Keys and more. After Wiz notified the exposure to DeepSeek, the vulnerability was immediately addressed and secured.
The Wiz researchers recommend businesses looking to use and adopt AI tools into their workflow pay close attention to the security of each solution, and protect customer data from exposure when using AI platforms.
Leave a comment