Introduction to DeepSeek
Recently, the DeepSeek iOS app, featuring China’s large language model, has climbed to the top of Apple’s App Store, overtaking established apps like ChatGPT. While its popularity surged, this rapid rise has raised significant concerns about security and data privacy among users.
Security Vulnerabilities Identified
According to mobile security firm NowSecure, the DeepSeek app is marred by several critical security issues. The app transmits sensitive data over the internet without encryption, leaving personal information vulnerable to interception. Additionally, when encryption is applied, outdated encryption keys are utilized, and sensitive data such as usernames and passwords is stored insecurely. These vulnerabilities could potentially allow attackers to steal confidential information easily.
Potential Risks for Users
Users should be particularly aware that the app also collects significant user and device data, which can facilitate de-anonymization, enabling tracking of individuals. Moreover, user data is reportedly sent to servers controlled by ByteDance, the owner of TikTok, which raises concerns about possible access by the Chinese government. As highlighted by NowSecure, these issues pose serious risks, including loss of intellectual property, compromised data integrity, and surveillance.
In light of these findings, individuals, as well as corporations and government agencies, are urged to consider removing DeepSeek from their devices and exploring alternative AI applications that prioritize mobile security and data protection.
