Wiz, a cybersecurity company based in New York, has discovered a publicly accessible ClickHouse database owned by DeepSeek, which lets full control over database operations, including access to internal data.
As per the Wiz’s blog post, the exposed data showed over a million lines of log streams.
This includes chat history, secret keys, backend details, and other highly sensitive information, which appears to contain user prompts sent to DeepSeek’s free AI assistant.
The Wiz’s research team immediately informed DeepSeek regarding the issue, and the company promptly secured the data.
DeeSeek, a Chinese company, developed its R1 reasoning model for training large AI models at a lower cost than usual.
It has gained a lot of popularity and suppressed OpenAI’s O1 models in several tests. The company claims to have trained its model with 671 billion parameters for only $5.6 million, using 2,048 Nvidia H800 graphics cards.
