Artificial intelligence has rapidly evolved, with companies like OpenAI and DeepSeek leading the way in cutting-edge research and development. However, with great technological advancements come significant cybersecurity challenges. Recently, both DeepSeek AI and OpenAI have experienced security incidents, raising concerns about the privacy of AI-related data and the potential risks to users. 

What Is DeepSeek AI? Understanding the DeepSeek Data Leak

DeepSeek AI is a Chinese artificial intelligence company focused on large-scale language models and deep learning. The company has been accused of copying OpenAI and has faced other copyright claims, too. In addition, concerns have been raised about user privacy and ties to the Chinese state.

DeepSeek’s troubles continue with the leaking of sensitive data belonging to over one million users. The leak was discovered when researchers accessed a public database belonging to DeepSeek which allowed full control over database operations — including the ability to access internal data. Two databases were exposed with over one million lines of log streams containing chat history, API Keys, backend details, and other highly sensitive information was uncovered. More critically, the exposure allowed for full database control and potential privilege escalation within the DeepSeek environment.

This is not the first cybersecurity attack DeepSeek has suffered, falling victim to a large-scale attack just a week after it launched. DeepSeek has already been banned by numerous countries and organizations, and this latest leak reinforces the dangers the app poses.

OpenAI’s Alleged Data Breach: 20m Logins for Sale

OpenAI, the company behind ChatGPT and other advanced AI models, has been a leader in artificial intelligence research and development. However, even one of the most well-resourced AI firms is not immune to cybersecurity threats. 

Threat actors on dark web forums claim to have stolen and leaked 20 million OpenAI user log-in credentials, potentially making it a significant data breach. An anonymous hacker posted about the alleged breach, offering a sample of log-in credentials, including emails and passwords, for sale at a low price. 

While the authenticity of the claims remains unverified, cybersecurity experts warn that if true, the breach could expose sensitive user data, including commercial projects, academic research, and private communications. Given OpenAI’s widespread use in business and education, the potential impact is concerning. 

Hackers sometimes exaggerate such claims to gain attention or attract buyers, but the scale of this allegation has prompted calls for caution. OpenAI has yet to confirm or deny the breach but is taking the claims “seriously”.

Protect Yourself with Trend Micro ScamCheck

Data breaches and the leaking of users’ personal info to the dark web always leads to an increase in phishing scams. Introducing Trend Micro ScamCheck! Available for both Android and iOS, ScamCheck offers comprehensive protection from the latest deception:

• Scam Check: Instantly analyze emails, texts, URLs, screenshots, and phone numbers with our AI-powered scam detection technology. Stay secure and scam-free.
• SMS Filter & Call Block: Say goodbye to unwanted spam and scam calls and messages. Minimize daily disruptions and reinforce your defenses against phishing.
• Deepfake Scan: Detect deepfakes in real-time during video calls, alerting you if anyone is using AI face-swapping technology to alter their appearance.
• Web Guard: Surf the web safely, protected from malicious websites and annoying ads.

To download Trend Micro ScamCheck or to learn more, click the button below.