Blog

Wiz Research uncovered a publicly accessible ClickHouse database belonging to DeepSeek, a Chinese AI startup. The database exposed over a million sensitive log entries, including chat history, API keys, and backend details.

The database was entirely open, allowing full control without authentication. This posed severe security risks, making it vulnerable to unauthorized access and potential misuse.

Wiz Research responsibly disclosed the issue, leading to its swift remediation. The company acted quickly to secure the exposed data and prevent further risks.

This incident highlights the dangers of rapid AI adoption without robust security measures. As AI technology continues to advance, security must remain a top priority.

Companies must prioritize securing their infrastructure to prevent similar exposures. Implementing strong authentication, monitoring, and encryption can help safeguard sensitive information.