Technology

Millions of AI chat messages exposed in app data leak

Published

2 months ago

February 6, 2026

Millions of AI chat messages exposed in app data leak

NEWYou can now listen to Fox News articles!

A popular mobile app called Chat & Ask AI has more than 50 million users across the Google Play Store and Apple App Store. Now, an independent security researcher says the app exposed hundreds of millions of private chatbot conversations online.

The exposed messages reportedly included deeply personal and disturbing requests. Users asked questions like how to painlessly kill themselves, how to write suicide notes, how to make meth and how to hack other apps.

These were not harmless prompts. They were full chat histories tied to real users.

Sign up for my FREE CyberGuy Report
Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.

HOW TECH IS BEING USED IN NANCY GUTHRIE DISAPPEARANCE INVESTIGATION

Security researchers say Chat & Ask AI exposed hundreds of millions of private chatbot messages, including complete conversation histories tied to real users. (Neil Godwin/Getty Images)

What exactly was exposed

The issue was discovered by a security researcher who goes by Harry. He found that Chat & Ask AI had a misconfigured backend using Google Firebase, a popular mobile app development platform. Because of that misconfiguration, it was easy for outsiders to gain authenticated access to the app’s database. Harry says he was able to access roughly 300 million messages tied to more than 25 million users. He analyzed a smaller sample of about 60,000 users and more than one million messages to confirm the scope.

The exposed data reportedly included:

Full chat histories with the AI
Timestamps for each conversation
The custom name users gave the chatbot
How users configured the AI model
Which AI model was selected

That matters because many users treat AI chats like private journals, therapists or brainstorming partners.

How this AI app stores so much sensitive user data

Chat & Ask AI is not a standalone artificial intelligence model. It acts as a wrapper that lets users talk to large language models built by bigger companies. Users could choose between models from OpenAI, Anthropic and Google, including ChatGPT, Claude and Gemini. While those companies operate the underlying models, Chat & Ask AI handles the storage. That is where things went wrong. Cybersecurity experts say this type of Firebase misconfiguration is a well-known weakness. It is also easy to find if someone knows what to look for.

We reached out to Codeway, which publishes the Chat & Ask AI app, for comment, but did not receive a response before publication.

149 MILLION PASSWORDS EXPOSED IN MASSIVE CREDENTIAL LEAK

The exposed database reportedly included timestamps, model settings and the names users gave their chatbots, revealing far more than isolated prompts. (Elisa Schu/Getty Images)

Why this matters to everyday users

Many people assume their chats with AI tools are private. They type things they would never post publicly or even say out loud. When an app stores that data insecurely, it becomes a gold mine for attackers. Even without names attached, chat histories can reveal mental health struggles, illegal behavior, work secrets and personal relationships. Once exposed, that data can be copied, scraped and shared forever.

YOUR PHONE SHARES DATA AT NIGHT: HERE’S HOW TO STOP IT

Because the app handled data storage itself, a simple Firebase misconfiguration made sensitive AI chats accessible to outsiders, according to the researcher. (Edward Berthelot/Getty)

Ways to stay safe when using AI apps

You do not need to stop using AI tools to protect yourself. A few informed choices can lower your risk while still letting you use these apps when they are helpful.

1) Be mindful of sensitive topics

AI chats can feel private, especially when you are stressed, curious or looking for answers. However, not all apps handle conversations securely. Before sharing deeply personal struggles, medical concerns, financial details or questions that could create legal risk if exposed, take time to understand how the app stores protects your data. If those protections are unclear, consider safer alternatives such as trusted professionals or services with stronger privacy controls.

2) Research the app before installing

Look beyond download counts and star ratings. Check who operates the app, how long it has been available, and whether its privacy policy clearly explains how user data is stored and protected.

3) Assume conversations may be stored

Even when an app claims privacy, many AI tools log conversations for troubleshooting or model improvement. Treat chats as potentially permanent records rather than temporary messages.

4) Limit account linking and sign-ins

Some AI apps allow you to sign in with Google, Apple, or an email account. While convenient, this can directly connect chat histories to your real identity. When possible, avoid linking AI tools to primary accounts used for work, banking or personal communication.

5) Review app permissions and data controls

AI apps may request access beyond what is required to function. Review permissions carefully and disable anything that is not essential. If the app offers options to delete chat history, limit data retention or turn off syncing, enable those settings.

6) Use a data removal service

Your digital footprint extends beyond AI apps. Anyone can find personal details about you with a simple Google search, including your phone number, home address, date of birth and Social Security number. Marketers buy this information to target ads. In more serious cases, scammers and identity thieves breach data brokers, leaving personal data exposed or circulating on the dark web. Using a data removal service helps reduce what can be linked back to you if a breach occurs.

While no service can guarantee the complete removal of your data from the internet, a data removal service is really a smart choice. They aren’t cheap, and neither is your privacy. These services do all the work for you by actively monitoring and systematically erasing your personal information from hundreds of websites. It’s what gives me peace of mind and has proven to be the most effective way to erase your personal data from the internet. By limiting the information available, you reduce the risk of scammers cross-referencing data from breaches with information they might find on the dark web, making it harder for them to target you.

Check out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visiting Cyberguy.com.

Get a free scan to find out if your personal information is already out on the web: Cyberguy.com.

Kurt’s key takeaways

AI chat apps are moving fast, but security is still lagging behind. This incident shows how a single configuration mistake can expose millions of deeply personal conversations. Until stronger protections become standard, you need to treat AI chats with caution and limit what you share. The convenience is real, but so is the risk.

Do you assume your AI chats are private, or has this story changed how much you are willing to share with these apps? Let us know your thoughts by writing to us at Cyberguy.com.

CLICK HERE TO DOWNLOAD THE FOX NEWS APP

Kurt “CyberGuy” Knutsson is an award-winning tech journalist who has a deep love of technology, gear and gadgets that make life better with his contributions for Fox News & FOX Business beginning mornings on “FOX & Friends.” Got a tech question? Get Kurt’s free CyberGuy Newsletter, share your voice, a story idea or comment at CyberGuy.com.

Related Topics:artificial intelligence Featured Privacy Tech

Click to comment

Technology

ChatGPT and Gemini apps are coming for your PC

Published

9 hours ago

April 18, 2026

Press Room

ChatGPT and Gemini apps are coming for your PC

Hi, friends! Welcome to Installer No. 124, your guide to the best and Verge-iest stuff in the world. (If you’re new here, welcome, send me your Coachella fits, and also you can read all the old editions at the Installer homepage.)

This week, I’ve been reading about restaurant bread and GLP-1s and Lenny Rachitsky and Artemis II fashion, watching the new boy band doc because I will always watch a boy band doc, also watching every clip I can find from Justin Bieber’s Coachella set, filling the Schitt’s Creek-shaped hole in my heart with Big Mistakes, getting increasingly excited about The Mandalorian and Grogu, and watering my new lawn so it doesn’t die. Please don’t die, lawn. You were so expensive.

I also have for you a couple of new AI apps to install on your computer, new action cameras worth planning a trip around, a new sci-fi action game to play, and much more.

Oh, and a reminder: Send me the thing you made! We’re doing self-promotion week in Installer (probably next week but maybe the week after), and either way I want to hear about the things you’ve been making, building, coding, creating, whatever-ing that you think the Installerverse might like. I’ve already heard from SO MANY of you, and it rules — keep the good stuff coming! Let’s dig in.

(As always, the best part of Installer is your ideas and tips. What are you watching / reading / playing / listening to / storing on your NAS this week? Tell me everything: installer@theverge.com. And if you know someone else who might enjoy Installer, forward it to them and tell them to subscribe here.)

OpenAI Codex. Here’s OpenAI’s latest stab at an all-in-one AI superapp, which includes a web browser, new coding tools, and a setting that allows Codex to just use your computer for you. Tread lightly, as always, but people seem to be liking Codex a lot recently.
Gemini for Mac. I’m mad at Google for tying its Mac app to a keyboard shortcut lots of people use for other things, and for making the app a login item by default. But! This is immediately the best way yet to interact with Gemini, and even Google Drive and Photos, from your computer. Into my dock it goes.
Beef season two. Beef is one of the very best shows nobody ever seems to talk about. I’ve been burned before by the “we’ll just do it again but with a whole new cast” premise — looking at you, True Detective — but this is a win even just as a reason to rewatch the first season.
Gradient Weather. Y’all, I think somebody finally made the gorgeous, simple weather app Android has been desperately needing. It’s very new and very beta, but I love the look, and I love that the whole aesthetic shifts with the weather. Insta-install.
Lorne. By all accounts this is about as close as anyone has ever gotten to a truly inside look at Saturday Night Live and its semi-mythological creator, Lorne Michaels. Morgan Neville mostly makes great docs and got a ton of access for this one; I’m very excited to watch it.
“Where Are All Of These GPUs Actually Going?” A very fun answer to a surprisingly complex question: What are companies doing with the unbelievable quantities of chips they’re buying? The numbers are all kind of pretend, and How Money Works does a good job making them make sense.
The DJI Osmo Pocket 4. It’s very sad that this gimbal camera isn’t coming to the US in the near future, because more buttons, better slo-mo, and more built-in storage are all terrific upgrades. I use a Pocket 3 all the time, and will be keeping an eye out for the upgrade.
The GoPro Mission 1 Pro ILS. This one’s still in “coming soon” mode, but it is the first GoPro in a long time I’ve been excited about. Adding an interchangeable lens mount, along with all the other Mission 1 upgrades, is going to completely change the kinds of things people do with GoPros. I can’t wait to see this thing out in the wild.
Coachella TV. I’ve never spent much time with YouTube’s Coachella livestream, but this year’s show has been terrific. It almost feels like a concert doc being shot in real time — and there’s more Bieber to come!
Pragmata. I am always here for a game that’s not trying to be a live-service, battle-royale, open-world anything, and instead just sends you on an adventure. It may suffer from being a touch too derivative, but it still appears to be very much my kind of game.

I’ve been a fan of Maria Popova’s work for… about as long as I can remember. Maria runs a site called The Marginalian, which I started following back when it was called Brain Pickings; under both names the site has been a fountain of stuff to read, with surprising and smart ideas about just about everything. I spend a lot of time reading, and on the internet, and I can’t think of anyone who shows me more stuff I never would have found otherwise.

Maria put out a book earlier this year, called Traversal, that is all about how people look at, think about, and reckon with the world around them. There is a lot going on in this book, and I suspect you’ll like it. I asked Maria to share her homescreen with us, curious if she also had a more enlightened take on all things technology.

Here’s Maria’s homescreen, plus some info on the apps she uses and why:

The phone: iPhone 16 – still too large for me, but I had to grudgingly resign to it after my last 13 mini gave up Moore’s ghost.

The wallpaper: Spring moonrise behind leafing maple in the forest where I live much of the year.

The apps: Evernote, Phone, Safari. (Blank Spaces is the app that turns the icons to text.)

The usual life-management tools (calendar, connection, climate) plus Evernote, which I have been using since 2003 and which is by now an Alexandria of meticulously organized information that just about runs my life.

I also asked Maria to share a few things she’s into right now. Here’s what she sent back:

Robert Macfarlane and Jackie Morris’s Book of Birds: A Field Guide to Wonder and Loss.
Joan As Police Woman’s record Lemons, Limes and Orchids.
Jad Abumrad’s miniseries Fela Kuti: Fear No Man.
The lovely reminder of who we can be in the story of how humanity saved the ginkgo.

Here’s what the Installer community is into this week. I want to know what you’re into right now as well! Email installer@theverge.com or message me on Signal — @davidpierce.11 — with your recommendations for anything and everything, and we’ll feature some of our favorites here every week. For even more great recommendations, check out the replies to this post on Threads and this post on Bluesky.

“Becca Farsace recommended the OhSnap Mcon on her channel recently and I picked one up. It’s super slick and works great with the Delta emulator so far. I got Goldeneye running just fine with it after a little tuning.” — Ian

“Really been enjoying Plain Text Sports to follow the start of baseball season. Loads fast, has everything I want with none of the ESPN cruft” — Rich

“I’ve almost finished reading Service Model by Adrian Tchaikovsky and I’m obsessed: equal amounts of humor and existential dread. It’s very silly, very thoughtful, and frankly a very Verge-y take on technology.” — Olof

“YouTube has been my recent go-to for surprisingly good short films that you would probably never hear about or would probably get lost in the Hollywood machine. For instance, this one called Aborted was amazing and there are more like it out there.” — Steve

“Definitely watch Jon Bois’ hilarious, quirky, and informative series about the birth of the internet mashed up with Home Improvement TV show references.” — Logan

“I bought a MacBook Air a few weeks ago after looking at the Neo and getting fed up by Windows, and I bought a few helper apps to fix small annoyances I had with the notch and
Spotlight. There are a lot of good notch applications but I bought Alcove — having the notch show me when I raise and lower volume makes the giant black bar in the middle of my screen feel slightly less useless somehow. I’ve also been using TinyStart, which is really

fast and nice! These two helper apps have made using the Mac as my main computer feel much nicer than it did the last time I tried.” — Iris

”My passion for discovering TTRPGs and learning about game design has led me into a deep dive on the Youtube channel Knights of Last Call. Long live-streams and VODs and a super active community have opened my eyes to even more of what is possible in TTRPGs.” — Simeon

“Season 3 of Shrinking on Apple TV just ended on such a powerful note. The ensemble cast just keeps bringing it and the writing realistically takes on all kinds of human problems we all deal with or know about. A+” — Aaron

“I find SO MANY great book recommendations thanks to The Big Idea feature on John Scalzi’s blog, Whatever!” — Steve

You surely already know this, but I spend way too much time on snacks. Eating them. Researching them. Thinking about them. Longing for more of them. And I know I’m not alone! So I have big news: My wife recently brought home a variety pack of candy from YumEarth, and it’s all excellent. It’s basically Skittles, Starbursts, and Sour Patch Kids, but with more natural ingredients and a lot less sugar. (But still a lot of sugar, because it’s candy. Sugar-free candy is a lie.)

I am constantly on the lookout for a way to make my bad habits a little better, without making my life worse in the process. This is a perfect one. The Skittles equivalent are called “Giggles,” which is awful, but they’re delicious. So I’ll allow it. I’m gonna go get some right now.

Follow topics and authors from this story to see more like this in your personalized homepage feed and to receive email updates.

David Pierce

Technology

Fox News AI Newsletter: Tech company cuts 1,000 jobs in AI-driven restructuring

Published

10 hours ago

April 18, 2026

Press Room

People attend the 2023 Snap Partner Summit at the Barker Hangar in Santa Monica, California, on April 19, 2023. (Frederic J. Brown/AFP via Getty Images)

NEWYou can now listen to Fox News articles!

Welcome to Fox News’ Artificial Intelligence newsletter with the latest AI technology advancements.

IN TODAY’S NEWSLETTER:

– Snapchat parent company cuts 1,000 jobs in major AI-driven workforce restructuring

– The AI you use every day is biased — and it’s quietly shaping your worldview, new report says

– First-ever moratorium on AI data centers passes Maine legislature

TECH SHAKE-UP: Snapchat parent company cuts 1,000 jobs in major AI-driven workforce restructuring – Snapchat’s parent company, Snap, announced it is laying off approximately 1,000 employees—about 16% of its full-time workforce — as part of a major restructuring effort driven by the integration of artificial intelligence. The tech firm expects the cuts and AI-driven workflow efficiencies to yield over $500 million in annualized savings, following pressure from an activist investor to streamline operations and rein in costs.

CODED INFLUENCE: The AI you use every day is biased — and it’s quietly shaping your worldview, new report says – A new report from the America First Policy Institute reveals that popular artificial intelligence systems consistently lean left and possess a subtle ideological bias that can quietly shape users’ worldviews. The findings suggest that these hidden design choices not only reflect ideological assumptions but can actively persuade and influence public opinion on key political and social issues, raising transparency concerns over AI’s growing role in daily life.

TECH BOOM BRAKES: First-ever moratorium on AI data centers passes Maine legislature – Maine is poised to become the first state to impose a moratorium on large artificial intelligence data centers, advancing legislation that would pause approvals for hyperscale facilities requiring over 20 megawatts of power until October 2027. The move, which reflects growing national backlash over power grid strain and environmental impacts, will serve as a major test case for how states balance the massive energy demands of Big Tech with local economic and ecological concerns.

FBI agents executed a search warrant at the Spring, Texas, home of a suspect in the Molotov cocktail attack on the home of OpenAI CEO Sam Altman. (Fox News)

COPYCAT RISK: Molotov cocktail attack on Sam Altman’s home sparks fears of copycat strikes against tech executives – Following a predawn Molotov cocktail attack on OpenAI CEO Sam Altman’s San Francisco home, federal authorities are on high alert for copycat strikes against other high-profile tech executives. The suspect, Daniel Moreno-Gama, was motivated by anti-AI extremism and allegedly carried a manifesto listing additional AI executives and their addresses, prompting San Francisco District Attorney Brooke Jenkins to pursue aggressive prosecution amid escalating rhetoric surrounding artificial intelligence.

EVOLVED HACKING: AI is now powering cyberattacks, Microsoft warns – According to a new report from Microsoft Threat Intelligence, cybercriminals and nation-state actors are increasingly utilizing artificial intelligence to accelerate and scale their cyberattacks. Hackers are using generative AI to write convincing phishing emails, build malicious infrastructure and dynamically generate malware, significantly lowering the technical barrier to entry for cybercrime and prompting calls for stronger digital security measures.

WATCH OUT: Is Mark Zuckerberg’s Meta AI getting too smart? – Meta has unveiled its foundational AI model, Muse Spark, equipping its Meta AI assistant with advanced multimodal capabilities like image comprehension and parallel task handling across apps like WhatsApp, Instagram, and Facebook. Fox News Digital details that the upgrade is part of Mark Zuckerberg’s aggressive push toward a “personal superintelligence,” allowing the AI to seamlessly analyze photos, answer complex health queries, and simultaneously execute multi-step planning tasks.

OPINION: SEN BERNIE SANDERS: Artificial intelligence is coming for the working class. We must fight back – Sen. Bernie Sanders is calling for a federal moratorium on new artificial intelligence data centers until strong safeguards are enacted to protect the working class from widespread job displacement. Sen. Sanders warns that AI oligarchs are deploying revolutionary technologies to replace human workers entirely, urging Congress to rethink the American social contract and ensure the AI boom benefits everyday citizens rather than just billionaires.

COSTLY CONVENIENCE: OPINION: AI tax filing sounds easy — until it leaves you owing the IRS thousands of dollars – While using AI chatbots like ChatGPT to file taxes may seem like a convenient shortcut, relying on them can lead to costly errors and severe IRS penalties due to the tools’ inability to accurately apply complex tax codes. Expert Hemant Bhargava cautions taxpayers to treat AI as a translator rather than a decision-maker, emphasizing that consumer AI systems frequently miscalculate liabilities and fail to securely handle highly sensitive financial data.

DIGITAL DOPPELGANGER: Meta reportedly building an AI version of Mark Zuckerberg to interact with company employees – Meta is reportedly developing a photorealistic, artificial intelligence-powered version of CEO Mark Zuckerberg to interact directly with company employees, according to a recent report. Zuckerberg has been actively training the AI character on his own mannerisms and strategies to foster stronger internal connections, a move that aligns with the tech giant’s broader ambition to integrate “personal superintelligence” across its platforms.

Facebook founder Mark Zuckerberg. ( David Paul Morris/Bloomberg via Getty Images)

MAJOR REVAMP: Allbirds drops sneakers, reinvents itself as an AI infrastructure company – San Francisco-based footwear brand Allbirds is abandoning its sneaker business to reinvent itself as an artificial intelligence infrastructure company called NewBird AI. The stunning pivot involves a $50 million convertible financing agreement to acquire high-performance graphics processing units (GPUs), aiming to meet the massive, unmet demand for AI cloud computing capacity among enterprise developers.

‘KEEP UP’: Reese Witherspoon warns AI is three times more likely to replace women – Actress Reese Witherspoon took to Instagram to urge women to embrace artificial intelligence, warning that jobs traditionally held by women are three times more likely to be automated by the emerging technology. Witherspoon’s concerns align with a recent UN study, and the Hollywood star is encouraging her followers to actively learn about AI so they aren’t left behind in a rapidly evolving digital landscape.

LATTE UPGRADE: Starbucks uses ChatGPT to suggest drinks based on mood as expert warns of hidden downsides – Starbucks has launched a beta integration with ChatGPT, allowing customers to receive customized beverage recommendations tailored to their mood, taste, and even the weather. Fox News Digital reports that while the AI tool offers a fun and highly personalized ordering experience, experts warn it could quietly manipulate consumer behavior by consistently nudging users toward sweeter, higher-calorie drinks that satisfy impulsive emotional cravings.

SPOT ON: AI could be coming for your wine as experts turn to technology for industry overhaul – Scientists have developed an AI-powered handheld sensor called RipenAI that uses machine learning and optical technology to instantly determine the ripeness of grapes directly on the vine. This revolutionary, non-destructive tool could transform the winemaking industry by optimizing harvest timing and improving the overall quality and efficiency of wine production.

FOLLOW FOX NEWS ON SOCIAL MEDIA

Facebook
Instagram
YouTube
X
LinkedIn

SIGN UP FOR OUR OTHER NEWSLETTERS

Fox News First
Fox News Opinion
Fox News Lifestyle
Fox News Health

DOWNLOAD OUR APPS

Fox News
Fox Business
Fox Weather
Fox Sports
Tubi

WATCH FOX NEWS ONLINE

Fox News Go

STREAM FOX NATION

Fox Nation

Stay up to date on the latest AI technology advancements, and learn about the challenges and opportunities AI presents now and for the future with Fox News here.

This article was written by Fox News staff.

Technology

OpenAI’s former Sora boss is leaving

Published

21 hours ago

April 17, 2026

Press Room

I am immensely grateful to Sam, Mark, Aditya and Jakub for fostering a research environment that allowed us to pursue ideas off-the-beaten path from the company’s mainline roadmap. It’s tempting in life to mode collapse to the most important thing, but cultivating entropy is the only way for a research lab to thrive long-term, and Sam deeply understands this. Sora was a project that could not have happened anywhere but OpenAI, and I will always deeply love this place for that.