What You Need To Know About DeepSeek Security Issues and Vulnerabilities

DeepSeek, a Chinese AI application, has been flagged by SecurityScorecard researchers for numerous security and privacy issues — hardcoded encryption keys, weak cryptography, plaintext credentials, improper file permissions, excessive permissions and telemetry collection, potential SQL injection and remote code execution vectors, and unexplained data flows to Chinese entities (including integration with ByteDance). While no active exploitation or TTPs were observed, multiple governments and agencies have restricted or scrutinized the app due to national-security and data-sovereignty concerns.