A recent security audit of the DeepSeek mobile app for iOS has uncovered critical vulnerabilities, with the most alarming being its transmission of sensitive user data over the internet without encryption. This major oversight exposes users to potential data interception and cyber threats.
Unencrypted Data Transmission Raises Security Concerns
According to cybersecurity firm NowSecure, the DeepSeek iOS app fails to implement standard encryption protocols when sending mobile app registration and device data. This lapse makes user information susceptible to both passive and active cyberattacks.
"The DeepSeek iOS app transmits certain mobile app registration and device data over the internet without encryption," NowSecure stated. "This exposes sensitive user data to interception and manipulation attacks."
The security assessment also found that DeepSeek employs weak encryption mechanisms, including the outdated and insecure 3DES algorithm, hard-coded encryption keys, and the reuse of initialization vectors—further exacerbating the risks of data breaches.
DeepSeek Sends Data to ByteDance-Owned Servers
Another alarming discovery is that the data collected by DeepSeek is sent to servers managed by Volcano Engine, a cloud computing and storage platform owned by ByteDance, the parent company of TikTok.
Additionally, the app disables iOS’s App Transport Security (ATS), which is a built-in security feature that prevents the transmission of unencrypted data. By bypassing this protection, DeepSeek freely transmits unencrypted user data over the internet, making it a potential goldmine for cybercriminals and surveillance threats.
DeepSeek’s AI Capabilities Exploited by Cybercriminals
As DeepSeek gains popularity, security experts warn that threat actors are already leveraging its AI engine for malicious purposes. Cybersecurity firm Check Point reported that hackers are using DeepSeek alongside Alibaba Qwen and OpenAI ChatGPT to create advanced info stealers, generate unrestricted content, and refine spam distribution scripts.
"Cybercriminals are increasingly utilizing AI-driven techniques like jailbreaking to bypass protective measures, develop financial theft schemes, and execute large-scale spam campaigns," Check Point stated. "Organizations must implement proactive security defenses to mitigate these evolving AI-driven threats."
DeepSeek Under Scrutiny for Links to China
Further intensifying concerns, a recent Associated Press investigation revealed that DeepSeek’s website transmits user login credentials to China Mobile, a state-owned telecommunications company banned in the United States.
Due to its ties to China, U.S. lawmakers are advocating for a nationwide ban on DeepSeek from government devices, citing national security risks. Similar bans have already been enforced by Australia, Italy, the Netherlands, Taiwan, South Korea, and major government agencies in India and the United States, including Congress, NASA, the Navy, Pentagon, and the state of Texas.
DeepSeek Faces DDoS Attacks and Rising Cyber Threats
The app’s rapid rise in popularity has also made it a target for cybercriminals. Chinese cybersecurity firm XLab recently disclosed that DeepSeek has been subjected to relentless DDoS (Distributed Denial-of-Service) attacks from the Mirai botnets hailBot and RapperBot.
Meanwhile, fraudsters are exploiting the app’s viral success by setting up fake DeepSeek websites to distribute malware, phishing scams, and fraudulent cryptocurrency schemes.
Final Thoughts
DeepSeek’s lack of encryption, ties to China, and growing cybersecurity concerns raise red flags for both users and regulators. As security experts continue to uncover vulnerabilities, it is crucial for individuals and organizations to exercise caution when using AI-driven applications.
Stay informed. Stay secure.