Cybersecurity researchers at Wiz recently discovered a publicly accessible ClickHouse database belonging to Chinese AI startup, DeepSeek. This database contained over one million lines of chat history and other sensitive information, granting researchers full control over database operations.
Screenshot from Wiz research into DeepSeek security.
Wiz promptly notified DeepSeek, who quickly secured the exposed database. However, the possibility remains that unauthorized access to the data may have already occurred. While Wiz’s ethical research practices prevented deep investigation into the database contents, they concluded that potential attackers could have escalated privileges within the DeepSeek environment. This could have allowed retrieval of sensitive logs, chat messages, passwords, and local files without any authentication.
Wiz chose to investigate DeepSeek due to the recent media attention surrounding their R1 reasoning model, aiming to assess the company’s external security posture. Surprisingly, the ClickHouse database was discovered within minutes using basic search techniques. Researchers were able to interact with the database through ClickHouse’s HTTP interface. A simple SHOW TABLES; query revealed a list of accessible datasets, including the “log_steam” table containing the sensitive information.
The incident highlights the potential security risks associated with the rapid adoption of AI. The pressure to develop, release, and integrate AI products quickly can sometimes lead to compromised security practices. Given the volume of sensitive data processed by AI programs, the industry needs to prioritize robust security measures comparable to those implemented by public cloud and major infrastructure providers. Wiz’s report emphasizes this urgency, advocating for stricter security protocols in the rapidly evolving AI landscape.
In conclusion, the DeepSeek data exposure serves as a stark reminder of the critical importance of cybersecurity in the age of AI. As AI continues to advance and integrate into various sectors, ensuring robust security measures must be paramount. The potential consequences of neglecting security can be severe, jeopardizing sensitive data and potentially impacting individuals and organizations.
