Top Android AI photo and video editor exposes nearly two million user images and videos

AI App “Video AI Art Generator & Maker” Exposes 8.27 Million User Files in Major Data Leak

In a shocking revelation that underscores the growing cybersecurity risks in the AI app ecosystem, researchers from Cybernews have uncovered a massive data breach involving the popular Android app “Video AI Art Generator & Maker.” The leak exposed a staggering 8.27 million media files, including 2 million private user photos and videos, stored in a misconfigured Google Cloud storage bucket.

The app, which allows users to create AI-generated makeovers for photos and videos, was found to have left its cloud storage unprotected, making it accessible to anyone who knew where to look. The exposed bucket contained not only user-uploaded content but also over 2.87 million AI-generated videos, 386,000 AI-generated audio files, and 2.87 million AI-generated images.

This incident is particularly alarming as it highlights the potential for sensitive personal data to be compromised in the rapidly growing AI app market. The leak was discovered by Cybernews researchers, who promptly notified the developers, Codeway Dijital Hizmetler Anonim Sirketi, a Turkish company. The developers secured the database shortly after being informed.

This isn’t the first time Codeway has faced such an issue. Another of their apps, Chat & Ask AI, was found to have exposed 300 million messages tied to 25 million users due to a misconfigured Google Firebase backend. These repeated incidents raise serious questions about the company’s data security practices and the broader implications for user privacy in the AI app industry.

The “Video AI Art Generator & Maker” app, launched in mid-June 2023, has been storing user multimedia since its inception. The exposed bucket contained over 1.5 million user images and more than 385,000 videos, all of which were at risk due to the misconfiguration.

While the app is not currently listed on the Google Play Store or the developer’s official website, Codeway’s dedicated Play Store page shows only three apps. However, their official website does showcase the Chat & Ask AI app, which has also had its share of security issues.

This incident serves as a stark reminder of the importance of robust cybersecurity measures in the development and deployment of AI applications. As these technologies become increasingly integrated into our daily lives, the potential for data breaches and privacy violations grows exponentially.

Cybersecurity experts emphasize the need for developers to prioritize security features, such as enabling authentication for critical cloud storage buckets used to store user data. The rush to market with innovative AI features should not come at the expense of user privacy and data protection.

As the AI app market continues to expand, users are advised to be cautious about the permissions they grant to these applications and to stay informed about potential security risks. Regular security audits and updates are crucial for maintaining the integrity of user data in this rapidly evolving technological landscape.

Tags & Viral Phrases:

• Massive Data Breach
• AI App Security Flaw
• User Privacy at Risk
• Cybernews Investigation
• Google Cloud Misconfiguration
• Codeway Data Leak
• 8.27 Million Files Exposed
• AI-Generated Content Compromised
• Cybersecurity in AI Apps
• Data Protection Warning
• User-Uploaded Content Leaked
• Tech Industry Scandal
• Privacy Concerns in AI
• Mobile App Vulnerability
• Cloud Storage Security
• Digital Privacy Alert
• AI Technology Risks
• User Data Protection
• App Development Security
• Cybersecurity Best Practices
• Data Breach Aftermath
• AI App Market Scrutiny
• User Trust in Technology
• Tech Company Accountability
• Digital Security Awareness
• AI Innovation vs. Privacy
• App Permissions Caution
• Tech Industry Regulation
• User Data Safety
• AI App Trust Issues
• Cybersecurity Incident Response
• Data Breach Prevention
• Tech Company Reputation
• User Privacy Rights
• AI App Market Growth
• Digital Security Education
• Tech Industry Transparency
• User Data Management
• AI App Security Standards
• Cybersecurity in Mobile Apps
• Data Protection Legislation
• Tech Company Responsibility
• User Privacy Advocacy
• AI Technology Ethics
• Digital Security Trends
• App Development Best Practices
• User Data Ownership
• Tech Industry Challenges
• AI App User Awareness

,