AI Coding Tools Expose Sensitive Data in Massive Security Oversight
Israeli cybersecurity firm RedAccess uncovered over 380,000 publicly accessible applications built using low-code and AI-powered tools from Lovable, Base44, Replit, and Netlify, including roughly 5,000 containing sensitive corporate and personal data. The findings, shared with Axios on Monday, highlight how employees without cybersecurity training are inadvertently exposing confidential information through misconfigured privacy settings.
RedAccess CEO Dor Zvi revealed the apps were discovered while investigating "shadow AI" unauthorized use of AI tools by employees. Many applications were set to public by default, requiring manual adjustments to restrict access. Some exposed data included:
- Medical records (doctor-patient conversations, clinical trial details, hospital staff schedules)
- Financial data (internal bank records, customer service logs)
- Corporate intelligence (shipping vessel routes, internal incident reports)
- Phishing sites impersonating brands like Bank of America, FedEx, and McDonald’s
Representatives from the affected platforms responded with mixed reactions. Base44 accused RedAccess of withholding URLs needed for verification, while Lovable acknowledged the reports but noted they lacked technical specifics to act immediately. Replit emphasized that users control app visibility, with CEO Amjad Masad stating RedAccess gave only 24 hours’ notice before public disclosure. Netlify did not respond to requests for comment.
Security researchers confirmed that many exposed apps were indexed by Google, making them easily discoverable. Axios independently verified several cases, including:
- A hospital app with unredacted patient complaints and staff schedules
- A Brazilian bank’s internal financial records
- A school app containing lesson recordings and student data
The incident underscores how AI-driven "vibe coding" tools designed for non-technical users are enabling rapid, large-scale data exposure. As Zvi noted, the lack of built-in safeguards means even basic security oversights can lead to unintentional public leaks of critical information. Some exposed apps were taken down after companies were notified, but the broader issue of unauthorized AI tool usage in enterprises remains unaddressed.
Source: https://www.axios.com/2026/05/07/loveable-replit-vibe-coding-privacy
FedEx cybersecurity rating report: https://www.rankiteo.com/company/fedex
Lovable cybersecurity rating report: https://www.rankiteo.com/company/lovable-dev
Base44 cybersecurity rating report: https://www.rankiteo.com/company/base44
Netlify cybersecurity rating report: https://www.rankiteo.com/company/netlify
Replit cybersecurity rating report: https://www.rankiteo.com/company/replit
"id": "FEDLOVBASNETREP1778156932",
"linkid": "fedex, lovable-dev, base44, netlify, replit",
"type": "Vulnerability",
"date": "5/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Technology',
'name': 'Lovable',
'type': 'AI-powered tool platform'},
{'industry': 'Technology',
'name': 'Base44',
'type': 'AI-powered tool platform'},
{'industry': 'Technology',
'name': 'Replit',
'type': 'AI-powered tool platform'},
{'industry': 'Technology',
'name': 'Netlify',
'type': 'AI-powered tool platform'},
{'customers_affected': 'Patients and staff',
'industry': 'Healthcare',
'name': 'Unnamed hospital',
'type': 'Healthcare'},
{'industry': 'Finance',
'location': 'Brazil',
'name': 'Unnamed Brazilian bank',
'type': 'Financial institution'},
{'customers_affected': 'Students',
'industry': 'Education',
'name': 'Unnamed school',
'type': 'Educational institution'},
{'industry': 'Finance',
'name': 'Bank of America',
'type': 'Financial institution'},
{'industry': 'Logistics',
'name': 'FedEx',
'type': 'Logistics'},
{'industry': 'Food & Beverage',
'name': 'McDonald’s',
'type': 'Food service'}],
'attack_vector': 'Misconfiguration',
'data_breach': {'number_of_records_exposed': 'Roughly 5,000 applications with '
'sensitive data',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Medical records',
'Financial data',
'Corporate intelligence',
'Phishing sites',
'Internal bank records',
'Customer service logs',
'Shipping vessel routes',
'Internal incident reports',
'Patient complaints',
'Staff schedules',
'Lesson recordings',
'Student data']},
'description': 'Israeli cybersecurity firm RedAccess uncovered over 380,000 '
'publicly accessible applications built using low-code and '
'AI-powered tools from Lovable, Base44, Replit, and Netlify, '
'including roughly 5,000 containing sensitive corporate and '
'personal data. The findings highlight how employees without '
'cybersecurity training are inadvertently exposing '
'confidential information through misconfigured privacy '
'settings.',
'impact': {'brand_reputation_impact': 'Potential brand reputation damage for '
'affected entities',
'data_compromised': 'Sensitive corporate and personal data',
'identity_theft_risk': 'High',
'legal_liabilities': 'Potential legal liabilities due to data '
'exposure',
'operational_impact': 'Exposure of internal records and systems',
'payment_information_risk': 'High (for financial data exposed)',
'systems_affected': '380,000+ applications built using Lovable, '
'Base44, Replit, and Netlify'},
'investigation_status': 'Ongoing',
'lessons_learned': "The incident underscores how AI-driven 'vibe coding' "
'tools designed for non-technical users are enabling '
'rapid, large-scale data exposure due to lack of built-in '
'safeguards.',
'motivation': 'Unintentional exposure by employees',
'post_incident_analysis': {'root_causes': 'Misconfigured privacy settings in '
'low-code/AI tools, lack of '
'cybersecurity training for '
'employees, default public '
'settings'},
'references': [{'source': 'Axios'}, {'source': 'RedAccess'}],
'response': {'containment_measures': 'Some exposed apps were taken down after '
'companies were notified'},
'title': 'AI Coding Tools Expose Sensitive Data in Massive Security Oversight',
'type': 'Data Exposure',
'vulnerability_exploited': 'Default public settings in low-code/AI tools'}