A significant security breach has jeopardized the private conversations of millions, revealing around 300 million messages from over 25 million users of the Chat & Ask AI app. This app, developed by the Turkish firm Codeway, serves as a gateway to popular AI models. The leak stemmed from a common technical error known as Firebase misconfiguration, where security settings were publicly accessible, allowing unauthorized access to sensitive data.
Data exposed included full chat histories and deeply personal requests, exacerbating privacy concerns. This isn’t an isolated incident; other AI platforms have encountered similar breaches, reinforcing the urgent need for strict application security measures.
Independent researcher Harry discovered the vulnerability and identified similar flaws in other apps, emphasizing that user privacy relies heavily on developer security practices. To safeguard your data, refrain from sharing personal information with AI tools, and always treat conversations as potentially public to mitigate risks.
Source link
