Washington – The Chinese Artificial Intelligence Company website Veteranwhose chatbot became the most downloaded application in the United States, has a computer code that could send a session login information to a Chinese state telecommunications company that has been prohibited to operate in the United States, says researchers security
The Depseek chatbot web session page contains a strongly obfuscated computer script that when the deciphering shows connections to computer infrastructure owned by China Mobile, a state -owned telecommunications telecommunications company. The code seems to be part of the accounts and login process of the user for Deepseek.
In his privacy policy, Depseek acknowledged store data on servers inside The Popular Republic of China. But its chatbot appears more directly linked to the Chinese state than the link revealed by China Mobile researchers. The United States has affirmed that there are close links between China Mobile and the Chinese army as justification to impose limited sanctions on the company. Deepseek and China Mobile did not respond to emails in search of comments.
The growth of digital services controlled by the Chinese has become an important issue of concern for the national security officials of the United States. Legislators in Congress last year last year overwhelmingly voted to force the Chinese parent company of the popular application of Video Video Exchange to unintentionally or face a national prohibition, although the application has received since then. A 75 -day postponement of President Donald TrumpThat expects to solve a sale.
Feroot Security, a Canadian cybersecurity Canadian company, discovered for the first time the code that links one of the main mobile phone providers in China. The AP brought Feroot’s findings to a second set of computer experts, which independently confirmed that China’s mobile code is present. Neither feroot nor the other researchers observed data transferred to China Mobile when they tested session in North America, but could not rule out that the data for some users were transferred to the Chinese telecomunda.
The analysis only applies to the Deepseek web version. They did not analyze the mobile version, which is still one of the most downloaded software pieces in Apple and Google application stores.
The Federal Communications Commission of the United States unanimously He denied China’s mobile authority to operate in the United States In 2019, citing “substantial” national security concerns about the links between the company and the Chinese state. In 2021, the Biden administration also issued sanctions that limited the ability of Americans to invest in China Mobile after the Pentagon links it to the Chinese army.
“It is an amazing that without knowing it we are allowing China to examine the Americans and we are not doing anything about it,” said Ivan Tarynny, CEO of Feroot.
“It is difficult to believe that something like this was accidental. There are so many unusual things for this. Do you know what to say “where there is smoke, there is fire”? In this case, there is a lot of smoke, ”said Tsarknny.
Stewart Baker, a Washington -based lawyer and consultant Speaking of information that is very likely that it is of more national security and personal importance than anything that people do in Tiktok “, one of the most popular social media platforms in the world.
Users are getting more and more confidential data in generative AI systems – Everything, from confidential commercial information to highly personal details about themselves. People use generative AI systems to verify, research and even highly personal consultations and conversations. The data security risks of this technology are magnified when the platform is owned by a geopolitical adversary and could represent a gold mine of intelligence for a country, experts warn.
“The implications of this are significantly greater because personal and patented information could be exposed. It’s like Tiktok but on a much larger scale and more precisely. It’s not just sharing entertainment videos. Share consultations and information that could include highly personal and confidential commercial information, ”said Tsarknny, Feroot.
Feroot, who specializes in identifying threats on the web, identified the computer code that is downloaded and activated when a user logs in Deepseek. According to the company’s analysis, the code seems to capture detailed information about the device in which a user logues, a process called fingerprints. These techniques are widely used by technological companies around the world for security, verification and advertising orientation.
The analysis of the company of the Code determined that there were links in that code that pointed to the Computer Systems of Mobile Authentication and Identity Management of China, which means that it could be part of the login process for some users who access Depseek .
The AP requested two cybersecurity academic experts, Joel Reardon of the University of Calgary and Serge Egelman of the University of California, Berkeley, which verifies Feroot’s findings. In their independent analysis of the Deepseek code, they confirmed that there were links between the logging system of the chatbot and China Mobile.
“It is clear that China Mobile is somehow involved in the Deepseek register,” Reardon said. He did not see the data transferred in his tests, but concluded that he is probably being activated for some users or in some login methods.
___
Contact the Global Research team of the AP to investigator@ap.org or https://www.ap.org/tips/.
By
