{"id":43776,"date":"2026-02-19T10:36:57","date_gmt":"2026-02-19T02:36:57","guid":{"rendered":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/2026\/02\/19\/firebase-misconfiguration-exposes-300m-messages-from-chat-ask-ai-users\/"},"modified":"2026-02-19T10:36:57","modified_gmt":"2026-02-19T02:36:57","slug":"firebase-misconfiguration-exposes-300m-messages-from-chat-ask-ai-users","status":"publish","type":"post","link":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/2026\/02\/19\/firebase-misconfiguration-exposes-300m-messages-from-chat-ask-ai-users\/","title":{"rendered":"Firebase Misconfiguration Exposes 300M Messages From Chat & Ask AI Users"},"content":{"rendered":"\n

A massive security failure has put the private conversations of millions at risk after an unprotected database was left accessible online. Discovered by an independent researcher, the leak exposed roughly 300 million messages from more than 25 million users of Chat & Ask AI, a popular app with over 50 million downloads across the Google Play<\/a> and Apple App Stores.<\/p>\n

The app is owned by Codeway, a Turkish technology firm founded in Istanbul in 2020, and acts as a ‘wrapper’, allowing a single gateway for users to interact with famous AI models like OpenAI\u2019s ChatGPT<\/a>, Google\u2019s Gemini, and Anthropic\u2019s Claude. Because it serves as a gateway to multiple systems, a single technical slip-up can have a massive impact on the privacy of its global user base.<\/p>\n

A Simple Door Left Open<\/strong><\/h3>\n

This was not a complex hack, as it was caused by a well-known technical error called a Firebase misconfiguration. Firebase<\/a> is a Google service used to manage app data, but here, the ‘Security Rules’ were mistakenly set to public. This effectively left the digital front door wide open, allowing anyone to read or delete data without a password.<\/p>\n

The researcher, known as Harry, noted the data included full chat histories and the specific names users gave to their AI bots<\/a>. Also, the files contained ‘deeply personal and disturbing requests’ like ‘discussions of illegal activities and requests for suicide assistance’. As many treat these bots as private journals, this exposure is a major concern.<\/p>\n

Not The First Time<\/strong><\/h3>\n

This is not the first time an AI chat platform has faced a data exposure incident. Earlier, OmniGPT suffered a breach<\/a> that exposed sensitive user information, showing how quickly privacy risks escalate when AI tools are deployed without strict backend safeguards. <\/p>\n

While the technical causes may vary, these incidents highlight a recurring pattern where traditional application security failures intersect with AI services that store highly personal conversations, increasing the impact far beyond a typical data leak.<\/p>\n

Lessons for AI Users<\/strong><\/h3>\n

This discovery led Harry to dig deeper. He built a tool to scan other apps for the same weakness and found that 103 out of 200 iOS apps he tested had the same flaw, exposing tens of millions of files. To help the public, he created a website<\/a> where users can check if their apps are at risk.<\/p>\n

Harry also alerted Codeway to the issue on 20 January 2026. While the company reportedly<\/a> fixed the error across all its apps within hours of the report, the database may have been vulnerable for a long period before it was secured. Once information is exposed on the open internet, it is difficult to determine if other parties copied it before the leak was finally plugged. This discovery proves that, at the end of the day, your private data is only as secure as a single developer’s checklist.<\/p>\n