Security flaw reveals AI chat histories at scale

Misconfigured cloud database triggers major AI data leak.
AI chat app breach exposes millions of private messages.

A major data breach has exposed hundreds of millions of messages from users of the AI chat app Chat & Ask AI. Security researchers said more than 25 million users were affected after an open database was discovered.

The app, developed by Codeway, connects users to large language models from firms such as OpenAI and Google. Exposed files included full chat histories, user settings and linked data from other Codeway apps.

Investigators traced the breach to a misconfigured Firebase database that lacked proper access controls. Similar configuration errors have been widely documented across mobile apps on platforms run by Apple and Google.

Codeway said the issue was fixed within hours of disclosure. Security experts warned the incident highlights growing privacy risks as AI chat tools scale faster than safeguards.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot