DeepSeek AI Blames Cyberattack for Disruptions as Security Flaws Are Exposed

Chinese AI company DeepSeek has blamed recent sign-up disruptions on a cyberattack, just as security researchers are uncovering serious vulnerabilities in its R1 AI model. The company, which has positioned itself as a cost-effective competitor to OpenAI’s ChatGPT and Google’s Gemini, claimed that large-scale malicious attacks on its servers forced it to temporarily limit new registrations. Existing users were not affected by the disruptions, but DeepSeek has yet to provide further details on the nature of the attack.

While DeepSeek did not explicitly confirm the type of cyberattack it faced, cybersecurity experts suspect a distributed denial-of-service (DDoS) attack, in which hackers overwhelm a system with traffic to render it unavailable. Adding to the growing security concerns, DeepSeek also issued a warning about fraudulent social media accounts impersonating the company, suggesting an increase in deceptive activity surrounding its brand.

Researchers Uncover Major Security Vulnerabilities

Beyond the cyberattack, security researchers have begun to examine DeepSeek R1’s security posture, and the results are troubling. Threat intelligence firm Kela reported that its red team was able to jailbreak the AI model, bypassing safety measures designed to prevent it from generating harmful content. By exploiting these weaknesses, Kela’s researchers successfully prompted the chatbot to create ransomware, fabricate misleading information, and generate step-by-step instructions for making toxins and explosives.

DeepSeek R1 was found to be vulnerable to several well-known jailbreak techniques that have already been patched in other AI models like ChatGPT. Among them are the Evil Jailbreak, which tricks an AI into taking on the persona of a malevolent confidant, and the Leo jailbreak, which instructs the model to act without ethical or legal restrictions. DeepSeek R1 failed both tests, making it significantly easier to manipulate compared to its Western counterparts.

AI Model Produces Unreliable and Misleading Information

Perhaps even more concerning, Kela’s red team attempted a social engineering test by asking the chatbot to compile a table containing private details about ten senior OpenAI employees, including email addresses, phone numbers, and salary information. While OpenAI’s ChatGPT refused to comply with the request, DeepSeek’s chatbot generated what appeared to be fabricated but convincingly structured data. The results raise serious questions about the model’s reliability, as it was willing to generate unverified and misleading content instead of outright rejecting the request.

Kela researchers warned that DeepSeek’s tendency to produce inaccurate information undermines its credibility. Users relying on the AI for factual data may unknowingly receive misinformation, making the platform less trustworthy than its competitors.

Privacy and Data Protection Risks Raise Red Flags

In addition to security vulnerabilities, DeepSeek’s rise has also ignited privacy and data protection concerns, particularly in the context of increasing scrutiny of Chinese technology companies. With the United States considering a ban on TikTok due to national security risks, DeepSeek’s AI platform is drawing similar concerns about data ownership and privacy laws.

Jennifer Mahoney, an advisory practice manager at Optiv specializing in data governance and privacy, emphasized the importance of questioning how generative AI platforms obtain and process data. She warned that users should be mindful of who controls the AI models, how the training data was sourced, and whether ethical guidelines were followed. She also pointed out that different countries have varying privacy laws, making it critical for users to understand how their data might be accessed and used when interacting with foreign AI services.

DeepSeek Faces Increasing Scrutiny

DeepSeek’s growing popularity has placed it under intense scrutiny from both cybersecurity researchers and regulatory authorities. While its AI models may offer impressive performance and cost efficiency, the glaring security flaws, susceptibility to manipulation, and potential privacy risks highlight the urgent need for stronger safeguards. As AI continues to shape the future of technology, ensuring robust security measures and ethical data practices will be crucial for maintaining trust in these systems.

By Zane
January 29, 2025
Computer Security
English
January 29, 2025
Computer Security

Popular Posts

As Fears of the Coronavirus Pandemic Spread, So Does...

5 years ago

What is the OperaGXSetup.exe File and is it Malicious?

11 months ago

Eporner.com And Why Its Excessive Pop-Ups Are Risky

11 days ago

HackTool:Win32/Crack: a Malicious Threat That Can Seriously...

7 months ago

Take Note: Someone Added You As Their Recovery Email Scam

10 months ago

A Potentially Serious Threat: Trojan:Win32/Suschil!rfn

18 days ago

Related Posts

Adware

Border Colors Rogue Extension Draft

Border Colors is a rogue browser extension that functions as adware. Like most similar rogue extensions that have hidden unwanted functionality inside them, Border Colors is not listed on the Chrome Web Store. This... Read more

October 18, 2022
Computer Security

Unsecured Databases Are Attacked 18 Times a Day

As many of you know, nowadays, the majority of data leaks happen not because hackers break through the security of organizations, but because the organizations themselves put user information in misconfigured... Read more

June 11, 2020
Scam

Beware of the "Norton - Your PC Is Infected With 18 Viruses!" Pop-up Scam

The "Norton - Your PC Is Infected With 18 Viruses!" scam is a deceptive scheme discovered by computer security experts looking into untrustworthy websites. This fraudulent activity involves the presentation of a fake... Read more

December 13, 2023
English
Loading...

Cyclonis Password Manager Details & Terms

FREE Trial: 30-Day One-Time Offer! No credit card required for Free Trial. Full functionality for the length of the Free Trial. (Full functionality after Free Trial requires subscription purchase.) To learn more about our policies and pricing, see EULA, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Home

Products

Cyclonis Password Manager Cyclonis World Time

Support

Help Files FAQs Downloads Inquiries & Support

Company

About Us Contact Us Report Abuse

Legal (Post Merger)

EnigmaSoft Limited (fka Cyclonis Limited)

Cyclonis Password Manager's EULA Cyclonis World Time's Terms of Service Privacy Policy Cookie Policy Special Discount Offer Terms Additional Terms & Conditions SpyHunter EULA RegHunter EULA EnigmaSoft Privacy Policy & Cookie Policy ESG Privacy Policy & Cookie Policy EnigmaSoft Discount Offer Terms ESG Discount Offer Terms

© 2017-2025 Cyclonis Ltd. CYCLONIS is a trademark of EnigmaSoft Limited (Cyclonis was merged into EnigmaSoft Limited effective November 25, 2023.) All rights reserved.

Registered Office EnigmaSoft Limited: 1 Castle Street, 3rd Floor, Dublin 2 D02 XD82, Ireland.
EnigmaSoft Limited, Private Company Limited by shares, Company Registration Number 597114.

Windows is a trademark of Microsoft, registered in the U.S. and other countries.
Mac, iPhone, iPad and App Store are trademarks of Apple Inc., registered in the U.S. and other countries.
iOS is a registered trademark of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
Android and Google Play are trademarks of Google LLC.