The DeepSeek mobile app for Apple iOS transmits sensitive data over the Internet, making it vulnerable to interception and manipulation. This issue was identified by cybersecurity firm NowSecure, which conducted a security audit and uncovered several critical flaws.
One of the main concerns is the encryption of user data. The app relies on the outdated and insecure symmetric encryption algorithm 3DES, with hard-coded encryption keys and reused initialization vectors. Additionally, it transmits data to servers operated by the Volcano Engine cloud platform, owned by ByteDance (the parent company of TikTok). NowSecure also found that the app has App Transport Security (ATS) globally disabled. This iOS security feature is designed to prevent the transmission of sensitive data over unencrypted channels, but with ATS disabled, DeepSeek sends unencrypted data over the Internet.
Data Exposure and Security Concerns
Cybersecurity company Check Point has previously reported cases of attackers exploiting AI platforms such as DeepSeek, Alibaba Qwen, and OpenAI ChatGPT to develop data-stealing tools, generate inappropriate content, and refine spam distribution scripts. The Associated Press also reported that DeepSeek transmits user credentials to China Mobile, a carrier banned in the United States.
Due to these concerns, U.S. lawmakers are pushing to prohibit DeepSeek on all government-owned devices, citing potential data sharing with Chinese authorities. Similar bans have already been implemented in Australia, Italy, the Netherlands, South Korea, India, and Taiwan. In the U.S., DeepSeek is already restricted on devices used by Congress, NASA, the Navy, the Pentagon, and the state of Texas.
DeepSeek’s Popularity and Associated Risks
The app’s rapid rise in popularity has also attracted cyber threats, adds NIXSolutions. DeepSeek has been targeted by DDoS attacks from botnets like hailBot and RapperBot, both part of the Mirai family. Additionally, the DeepSeek name has been misused in scams involving investment and cryptocurrency fraud, malware distribution, and fake websites designed to impersonate the official project.
Security concerns surrounding DeepSeek continue to evolve, and we’ll keep you updated as more developments emerge.