Not all AI tools in app marketplaces prioritize user privacy; many pose significant risks, especially on platforms like Google Play. Recent investigations revealed that unlicensed AI apps, including “Video AI Art Generator & Maker,” compromised vast amounts of personal data. This particular app leaked 1.5 million user images and 385,000 videos due to a misconfigured Google Cloud Storage bucket, exposing over 12 terabytes of sensitive content. Another app, IDMerit, revealed personally identifiable information from users in 25 countries, including the U.S., due to lax security measures. Cybersecurity experts are alarmed by these vulnerabilities, noting that 72% of analyzed apps shared similar security risks, many relying on “hardcoding secrets,” which embeds sensitive information in source code. Consequently, users must exercise caution when choosing AI apps, as security flaws could lead to severe data breaches, highlighting the need for improved cybersecurity practices.
Source link
