Millions of AI chat messages exposed in app data leak

A fashionable mobile app called Chat & Ask AI has much than 50 cardinal users crossed the Google Play Store and Apple App Store. Now, an autarkic information researcher says the app exposed hundreds of millions of backstage chatbot conversations online. 

The exposed messages reportedly included profoundly idiosyncratic and disturbing requests. Users asked questions similar however to painlessly termination themselves, however to constitute termination notes, however to marque meth and however to hack different apps. 

These were not harmless prompts. They were afloat chat histories tied to existent users.

Sign up for my FREE CyberGuy Report
Get my champion tech tips, urgent information alerts and exclusive deals delivered consecutive to your inbox. Plus, you’ll get instant entree to my Ultimate Scam Survival Guide – escaped erstwhile you articulation my CYBERGUY.COM newsletter.

HOW TECH IS BEING USED IN NANCY GUTHRIE DISAPPEARANCE INVESTIGATION

Security researchers accidental Chat & Ask AI exposed hundreds of millions of backstage chatbot messages, including implicit speech histories tied to existent users. (Neil Godwin/Getty Images)

What precisely was exposed

The contented was discovered by a information researcher who goes by Harry. He recovered that Chat & Ask AI had a misconfigured backend utilizing Google Firebase, a fashionable mobile app improvement platform. Because of that misconfiguration, it was casual for outsiders to summation authenticated entree to the app's database. Harry says helium was capable to entree astir 300 cardinal messages tied to much than 25 cardinal users. He analyzed a smaller illustration of astir 60,000 users and much than 1 cardinal messages to corroborate the scope.

The exposed information reportedly included:

• Full chat histories with the AI
• Timestamps for each conversation
• The customized sanction users gave the chatbot
• How users configured the AI model
• Which AI exemplary was selected

That matters due to the fact that galore users dainty AI chats similar backstage journals, therapists oregon brainstorming partners.

How this AI app stores truthful overmuch delicate idiosyncratic data

Chat & Ask AI is not a standalone artificial quality model. It acts arsenic a wrapper that lets users speech to ample connection models built by bigger companies. Users could take betwixt models from OpenAI, Anthropic and Google, including ChatGPT, Claude and Gemini. While those companies run the underlying models, Chat & Ask AI handles the storage. That is wherever things went wrong. Cybersecurity experts accidental this benignant of Firebase misconfiguration is simply a well-known weakness. It is besides casual to find if idiosyncratic knows what to look for.

We reached retired to Codeway, which publishes the Chat & Ask AI app, for comment, but did not person a effect earlier publication.

149 MILLION PASSWORDS EXPOSED IN MASSIVE CREDENTIAL LEAK

The exposed database reportedly included timestamps, exemplary settings and the names users gave their chatbots, revealing acold much than isolated prompts. (Elisa Schu/Getty Images)

Why this matters to mundane users

Many radical presume their chats with AI tools are private. They benignant things they would ne'er station publically oregon adjacent accidental retired loud. When an app stores that information insecurely, it becomes a golden excavation for attackers. Even without names attached, chat histories tin uncover intelligence wellness struggles, amerciable behavior, enactment secrets and idiosyncratic relationships. Once exposed, that information tin beryllium copied, scraped and shared forever.

YOUR PHONE SHARES DATA AT NIGHT: HERE'S HOW TO STOP IT

Because the app handled information retention itself, a elemental Firebase misconfiguration made delicate AI chats accessible to outsiders, according to the researcher. (Edward Berthelot/Getty)

Ways to enactment harmless erstwhile utilizing AI apps

You bash not request to halt utilizing AI tools to support yourself. A fewer informed choices tin little your hazard portion inactive letting you usage these apps erstwhile they are helpful.

1) Be mindful of delicate topics

AI chats tin consciousness private, particularly erstwhile you are stressed, funny oregon looking for answers. However, not each apps grip conversations securely. Before sharing profoundly idiosyncratic struggles, aesculapian concerns, fiscal details oregon questions that could make ineligible hazard if exposed, instrumentality clip to recognize however the app stores protects your data. If those protections are unclear, see safer alternatives specified arsenic trusted professionals oregon services with stronger privateness controls.

2) Research the app earlier installing

Look beyond download counts and prima ratings. Check who operates the app, however agelong it has been available, and whether its privateness argumentation intelligibly explains however idiosyncratic information is stored and protected.

3) Assume conversations whitethorn beryllium stored

Even erstwhile an app claims privacy, galore AI tools log conversations for troubleshooting oregon exemplary improvement. Treat chats arsenic perchance imperishable records alternatively than impermanent messages.

4) Limit relationship linking and sign-ins

Some AI apps let you to motion successful with Google, Apple, oregon an email account. While convenient, this tin straight link chat histories to your existent identity. When possible, debar linking AI tools to superior accounts utilized for work, banking oregon idiosyncratic communication.

5) Review app permissions and information controls

AI apps whitethorn petition entree beyond what is required to function. Review permissions cautiously and disable thing that is not essential. If the app offers options to delete chat history, bounds information retention oregon crook disconnected syncing, alteration those settings.

6) Use a information removal service

Your integer footprint extends beyond AI apps. Anyone tin find idiosyncratic details astir you with a elemental Google search, including your telephone number, location address, day of commencement and Social Security number. Marketers bargain this accusation to people ads. In much superior cases, scammers and individuality thieves breach information brokers, leaving idiosyncratic information exposed oregon circulating connected the acheronian web. Using a information removal work helps trim what tin beryllium linked backmost to you if a breach occurs.

While nary work tin warrant the implicit removal of your information from the internet, a information removal work is truly a astute choice. They aren't cheap, and neither is your privacy. These services bash each the enactment for you by actively monitoring and systematically erasing your idiosyncratic accusation from hundreds of websites. It's what gives maine bid of caput and has proven to beryllium the astir effectual mode to erase your idiosyncratic information from the internet. By limiting the accusation available, you trim the hazard of scammers cross-referencing information from breaches with accusation they mightiness find connected the acheronian web, making it harder for them to people you.

Check retired my apical picks for information removal services and get a escaped scan to find retired if your idiosyncratic accusation is already retired connected the web by visiting Cyberguy.com.

Get a escaped scan to find retired if your idiosyncratic accusation is already retired connected the web: Cyberguy.com.

Kurt's cardinal takeaways

AI chat apps are moving fast, but information is inactive lagging behind. This incidental shows however a azygous configuration mistake tin exposure millions of profoundly idiosyncratic conversations. Until stronger protections go standard, you request to dainty AI chats with caution and bounds what you share. The convenience is real, but truthful is the risk.

Do you presume your AI chats are private, oregon has this communicative changed however overmuch you are consenting to stock with these apps? Let america cognize your thoughts by penning to america at Cyberguy.com.

Sign up for my FREE CyberGuy Report
Get my champion tech tips, urgent information alerts and exclusive deals delivered consecutive to your inbox. Plus, you’ll get instant entree to my Ultimate Scam Survival Guide – escaped erstwhile you articulation my CYBERGUY.COM newsletter.

CLICK HERE TO DOWNLOAD THE FOX NEWS APP

Copyright 2026 CyberGuy.com. All rights reserved.