DeepSeek iOS app sends data unencrypted to ByteDance-controlled servers

Multiple security concerns were reported for DeepSeek: researchers found the model resisted malicious prompt attacks, while security firm Wiz discovered a publicly accessible database containing over one million chat histories, backend data, API secrets and operational details with an open interface enabling full control and privilege escalation; additionally, the mobile app used insecure (HTTP) endpoints by disabling ATS, exposing data in transit, and prompting U.S. lawmakers to push for a government ban.