• Home
  • cyber
  • Codeway and Chat & Ask AI: Millions of AI chat messages exposed in app data leak
cyber Breach

Codeway and Chat & Ask AI: Millions of AI chat messages exposed in app data leak

Jan 1, 2026 2 min read
Codeway and Chat & Ask AI: Millions of AI chat messages exposed in app data leak

AI Chat App Exposes 300 Million Private Conversations Due to Security Flaw

A popular mobile app, Chat & Ask AI with over 50 million users across Google Play and Apple’s App Store has exposed hundreds of millions of private chatbot conversations due to a misconfigured backend database. Independent security researcher "Harry" discovered the vulnerability, which allowed unauthenticated access to roughly 300 million messages tied to 25 million users.

The exposed data included full chat histories, timestamps, user-configured AI models, and custom chatbot names, revealing deeply personal and often sensitive interactions. Users had treated the app like a private journal or therapist, sharing distressing requests such as discussions on self-harm, illegal activities, and hacking under the assumption of confidentiality.

The breach stemmed from a misconfigured Google Firebase database, a common but preventable issue in mobile app development. While Chat & Ask AI itself doesn’t operate the underlying AI models (it integrates with OpenAI, Anthropic, and Google’s systems), it handled data storage where the security failure occurred. The app’s publisher, Codeway, did not respond to requests for comment.

For users, the incident underscores the risks of assuming AI chats remain private. Even without attached names, exposed conversations can reveal mental health struggles, illegal behavior, or personal secrets, which attackers could exploit indefinitely. The breach highlights a broader trend: as AI tools proliferate, security practices often lag behind adoption, leaving sensitive data vulnerable to simple misconfigurations.

No timeline for remediation has been provided, and the full scope of the exposure including whether malicious actors accessed the data remains unclear.

Source: https://www.foxnews.com/tech/millions-ai-chat-messages-exposed-app-data-leak

CAI - Chat AI - Quad AI Power: ChatGPT, Google Gemini Pro, Groq AI, Claude AI cybersecurity rating report: https://www.rankiteo.com/company/cai-chat-ai

Codeway cybersecurity rating report: https://www.rankiteo.com/company/codeway

"id": "CAICOD1770303020",
"linkid": "cai-chat-ai, codeway",
"type": "Breach",
"date": "1/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': '25 million users',
                        'industry': 'Technology/AI',
                        'name': 'Chat & Ask AI (Codeway)',
                        'size': '50 million users',
                        'type': 'Mobile App'}],
 'attack_vector': 'Misconfigured Database',
 'data_breach': {'number_of_records_exposed': '300 million messages',
                 'personally_identifiable_information': 'Potential (anonymous '
                                                        'but revealing)',
                 'sensitivity_of_data': 'High (personal, sensitive, mental '
                                        'health, illegal activities)',
                 'type_of_data_compromised': ['Full chat histories',
                                              'Timestamps',
                                              'User-configured AI models',
                                              'Custom chatbot names']},
 'description': 'A popular mobile app, *Chat & Ask AI*, with over 50 million '
                'users across Google Play and Apple’s App Store has exposed '
                'hundreds of millions of private chatbot conversations due to '
                'a misconfigured backend database. Independent security '
                "researcher 'Harry' discovered the vulnerability, which "
                'allowed unauthenticated access to roughly 300 million '
                'messages tied to 25 million users. The exposed data included '
                'full chat histories, timestamps, user-configured AI models, '
                'and custom chatbot names, revealing deeply personal and often '
                'sensitive interactions.',
 'impact': {'brand_reputation_impact': 'High',
            'data_compromised': '300 million private chatbot conversations',
            'identity_theft_risk': 'Potential',
            'systems_affected': 'Backend database (Google Firebase)'},
 'investigation_status': 'Unclear (full scope of exposure and malicious access '
                         'unknown)',
 'lessons_learned': 'The incident underscores the risks of assuming AI chats '
                    'remain private and highlights that security practices '
                    'often lag behind adoption in AI tools.',
 'post_incident_analysis': {'root_causes': 'Misconfigured Google Firebase '
                                           'database'},
 'references': [{'source': "Independent security researcher 'Harry'"}],
 'title': 'AI Chat App Exposes 300 Million Private Conversations Due to '
          'Security Flaw',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Misconfigured Google Firebase database'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.