DeepSeek Locked Down Public Database Access That Exposed Chat History

Research Firm Wiz Research began investigating DeepSeek soon after its generative AI took the tech world by storm. Continue reading DeepSeek Locked Down Public Database Access That Exposed Chat History

Unprotected DeepSeek Database Exposed Chats, Other Sensitive Information

An unprotected database belonging to Chinese AI company DeepSeek exposed highly sensitive information, including chat history, secret keys, and backend data.
The post Unprotected DeepSeek Database Exposed Chats, Other Sensitive Information appeared fir… Continue reading Unprotected DeepSeek Database Exposed Chats, Other Sensitive Information

89% of AI-powered APIs rely on insecure authentication mechanisms

APIs have emerged as the predominant attack surface over the past year, with AI being the biggest driver of API security risks, according to Wallarm. “Based on our findings, what is clear is that API security is no longer just a technical challenge – i… Continue reading 89% of AI-powered APIs rely on insecure authentication mechanisms

AI and cloud vulnerabilities aren’t the only threats facing CISOs today

With cloud infrastructure and, more recently, artificial intelligence (AI) systems becoming prime targets for attackers, security leaders are laser-focused on defending these high-profile areas. They’re right to do so, too, as cyber criminals turn to new and emerging technologies to launch and scale ever more sophisticated attacks. However, this heightened attention to emerging threats makes […]

The post AI and cloud vulnerabilities aren’t the only threats facing CISOs today appeared first on Security Intelligence.

Continue reading AI and cloud vulnerabilities aren’t the only threats facing CISOs today

DeepSeek’s popularity exploited by malware peddlers, scammers

As US-based AI companies struggle with the news that the recently released Chinese-made open source DeepSeek-R1 reasoning model performs as well as theirs for a fraction of the cost, users are rushing to try out DeepSeek’s AI tool. In the process… Continue reading DeepSeek’s popularity exploited by malware peddlers, scammers

Only 13% of organizations fully recover data after a ransomware attack

Ransomware attacks are disrupting and undermining business operations and draining revenue streams, according to Illumio. Findings from the study reveal that 58% of organizations had to shut down operations following a ransomware attack, up from 45% in… Continue reading Only 13% of organizations fully recover data after a ransomware attack

Can local LLMs like DeepSeek R1 potentially send prompts or data to servers in China? [closed]

I’m exploring the use of local large language models (LLMs) like DeepSeek R1 for my projects. However, I’m concerned about data privacy and security, particularly regarding whether these models could potentially send user prompts, response… Continue reading Can local LLMs like DeepSeek R1 potentially send prompts or data to servers in China? [closed]

DeepSeek Blames Disruption on Cyberattack as Vulnerabilities Emerge

China’s DeepSeek blamed sign-up disruptions on a cyberattack as researchers started finding vulnerabilities in the R1 AI model. 
The post DeepSeek Blames Disruption on Cyberattack as Vulnerabilities Emerge appeared first on SecurityWeek.
Continue reading DeepSeek Blames Disruption on Cyberattack as Vulnerabilities Emerge