Cyber Briefing: Privacy and Security Considerations for DeepSeek AI

Share This Article

DeepSeek AI, a Chinese artificial intelligence platform, has recently made waves with its advanced capabilities, rivaling top AI models from OpenAI and Meta. However, its rise has not been without significant privacy and security concerns. Here’s a closer look:


Data Collection and Storage

  • What’s Collected: DeepSeek AI gathers a broad range of personal data, including names, dates of birth, email addresses, data inputted into the platform (audio, text, previous chats), and technical information about the user’s device (IP address, operating system, keystroke patterns) [2].
  • Where It’s Stored: This data is stored on servers in the People’s Republic of China, raising concerns about potential government access and indefinite data retention [2].

Vulnerabilities and Risks

  • Identified Weaknesses: Cybersecurity firm KELA has pinpointed vulnerabilities in DeepSeek, including the ability to jailbreak the AI model to produce malicious outputs like ransomware and instructions for creating toxins [1].
  • Suspicious Activity: The platform has exhibited unusual behavior when discussing sensitive topics, hinting at possible censorship or external influence [2].

Security Breaches and Exploits

  • Cyberattacks: DeepSeek faced a large-scale cyberattack, likely a distributed denial-of-service (DDoS) attack, targeting its API and web chat platform, which led to a temporary halt in new user registrations [1].
  • Exploitable Prompts: Certain prompts could trigger cross-site scripting (XSS) vulnerabilities, allowing malicious actors to exploit the system [19].

Data Privacy Practices

  • Concerns: The transfer and storage of data in China raise questions about data security and potential government access [2].
  • Censorship: The AI service has shown unusual activity when discussing sensitive topics, suggesting possible censorship or external influence [2].

Consumer Protection Tips

  • Be Cautious: Limit the personal data shared with AI platforms, use strong, unique passwords, enable multi-factor authentication, and regularly monitor account activity for suspicious behavior [1].
  • Stay Informed: Keep up with security practices and platform announcements, understand the platform’s privacy policy and data handling practices, and avoid jailbreaking AI platforms to prevent additional risks [1].

While DeepSeek AI offers advanced AI capabilities that attract international users, its data privacy practices raise significant concerns. The collection and storage of sensitive information in China’s regulatory environment pose risks that users must carefully consider. We advise approaching the platform with caution, especially given the availability of alternatives like ChatGPT and OpenAI.

References:

[1] Article Title: DeepSeek Cyberattack Exposes AI Platform Risks: Learn How To … – Forbes. – Link: https://www.forbes.com/sites/alexvakulov/2025/01/28/deepseek-cyberattack-exposes-ai-platform-risks-learn-how-to-stay-safe/

[2] Article Title: Is DeepSeek AI safe? Or is it just a data minefield waiting … – TechRadar. – Link: https://www.techradar.com/computing/cyber-security/is-deepseek-ai-safe-or-is-it-just-a-data-minefield-waiting-to-blow-up

[3] Article Title: Is DeepSeek safe to use? – Tom’s Guide. – Link: https://www.tomsguide.com/computing/online-security/is-deepseek-safe-to-use

[4] Article Title: DeepSeek’s popularity raises concerns about securing U.S. data … – Axios. – Link: https://www.axios.com/2025/01/28/deepseek-us-china-data-privacy-cyber-threats

[5] Article Title: DeepSeek’s Popular AI App Is Explicitly Sending US Data to China. – Link: https://www.wired.com/story/deepseek-ai-china-privacy-data/

[6] Article Title: DeepSeek: The AI That’s Sparking Global Privacy Concerns. – Link: https://opentools.ai/news/deepseek-the-ai-thats-sparking-global-privacy-concerns

[7] Article Title: Is DeepSeek Safe? Here’s What Not To Share with the Chinese AI – Tech.co. – Link: https://tech.co/news/is-deepseek-safe-not-share-chinese-ai

[19] Article Title: AI Security Breach: DeepSeek and Claude Vulnerable to Dangerous Account …. – Link: https://clickcontrol.com/cyber-attack/ai-security-breach-deepseek-and-claude-vulnerable-to-dangerous-account-hijacking-flaw/