The Tariff Dispute
The US administration’s decision to impose heavy tariffs on Canadian goods, including steel and aluminum, sparked outrage across Canada. These tariffs were seen as an economic attack on Canadian industries, leading to a wave of nationalist sentiment and calls to support domestic products.

In retaliation, the Canadian government imposed its own tariffs on US goods, escalating the trade dispute into a full-fledged trade war. Citizens, businesses, and even sports fans expressed their frustration in various ways, including boycotting US products and, as seen in Ottawa, expressing discontent at sporting events.

Sports as a Political Stage
Sports have often served as a platform for political expression, and this incident was no exception. The booing of the US national anthem was a spontaneous display of frustration from Canadian fans, many of whom felt their economy was under attack. While sports are generally seen as unifying events, they can also become arenas where political and social tensions play out.

A Reflection of National Sentiment
The reaction of Canadian fans illustrates how deeply economic policies can affect public perception and cross-border relations. Tariffs, which are often implemented for economic reasons, can have far-reaching social and cultural consequences. The incident at the NHL game is a reminder that trade disputes are not just about numbers and policies—they affect real people, their livelihoods, and even their emotions.

Looking Forward
As trade negotiations continue, both countries must recognize the broader impact of their economic policies. Diplomacy, cooperation, and fair trade agreements remain crucial in maintaining strong relations between neighboring nations. The NHL incident serves as a symbolic moment of protest, emphasizing that economic policies resonate far beyond boardrooms and directly impact everyday citizens.

Security researchers at Wiz identified an unauthenticated ClickHouse database accessible from:

• oauth2callback.deepseek.com:9000
• dev.deepseek.com:9000

This database, completely open to the internet, contained highly sensitive information, including logs of user interactions, API keys, and backend configurations.

(Source: Wiz Research)

By using ClickHouse’s HTTP interface, researchers executed queries via a browser, extracting system logs, API secrets, and internal server details.

Security Risks and Consequences

The leak posed multiple security threats:

1. User Privacy Breach

The log entries contained plain-text chat histories, potentially exposing private conversations and user data.

(Source: Wiz Research)

2. API Key Leakage

Attackers could use exposed API keys to access DeepSeek’s backend, impersonate users, or manipulate AI outputs.

(Source: Wiz Research)

3. Infrastructure Vulnerabilities

The exposure allowed privilege escalation and the ability to execute queries directly on DeepSeek’s database.

(Source: Wiz Research)

Technical Details of the Exposure

Upon further inspection, researchers found that DeepSeek’s ClickHouse server was exposed via ports 8123 and 9000, making it publicly accessible without authentication.

(Source: Wiz Research)

They ran a simple SQL command (SHOW TABLES;), which listed multiple internal datasets, including log streams and operational metadata.

(Source: Wiz Research)

DeepSeek’s Response

Upon notification by Wiz Research, DeepSeek immediately secured the database, preventing further unauthorized access. However, no official statement has been made regarding whether any unauthorized breaches occurred before the fix.

Lessons for the AI Industry

This incident serves as a critical reminder that AI startups must prioritize security to prevent data leaks and infrastructure vulnerabilities.

Key Takeaways:

Restrict Database Access: Use authentication and firewall rules to limit exposure.
Encrypt Sensitive Data: Store API keys and chat histories securely.
Monitor Infrastructure: Implement real-time threat detection.
Regular Security Audits: Conduct penetration testing to prevent accidental exposure.

Final Thoughts

AI companies are expanding faster than security measures can keep up. As AI becomes critical to businesses, ensuring secure data management practices is more important than ever.

This DeepSeek exposure highlights the real dangers of misconfigured AI infrastructure. Moving forward, companies must prioritize security to avoid similar breaches.

For More Details, Read the Full Wiz Report:

Wiz Research Blog