Cyberattack on DeepSeek
In a significant cybersecurity incident, China’s AI start-up DeepSeek was targeted by a massive cyberattack that originated in the United States. The attack, which began on January 3, reached its peak on Monday and Tuesday with a large-scale brute-force assault from US IP addresses
DeepSeek, known for its innovative AI solutions, recently launched a free and open-sourced AI assistant that claimed to use less data at a fraction of the cost of existing US artificial intelligence models. This launch was seen as a potential turning point in the AI industry, drawing significant attention from both the tech community and cyber adversaries
Details of the Cyberattack
The cyberattack on DeepSeek involved multiple stages, starting with distributed denial-of-service (DDoS) attacks aimed at overwhelming the company’s servers and bandwidth with internet traffic. These DDoS attacks disrupted DeepSeek’s normal operations, causing significant service interruptions
As the attack progressed, the focus shifted to brute-force attacks. These attacks systematically attempted to crack user IDs and passwords, potentially allowing the attackers to gain unauthorized access to DeepSeek’s platform. The goal of these brute-force attacks was to understand the underlying AI technology used by DeepSeek
Impact on DeepSeek
The cyberattack affected several critical areas of DeepSeek’s operations, including its internal Customer Relationship Management (CRM) system, intranet, and parts of its website operations. Despite these disruptions, DeepSeek’s public services remained operational, and users could still contact the company through telephone, email, or face-to-face meetings
In response to the attack, DeepSeek temporarily limited new registrations to users with mainland Chinese mobile numbers to mitigate the impact of the malicious activity. The company also updated relevant access rights, isolated the affected systems, and activated backup procedures to ensure data integrity and continuity of operations
Investigation and Response
DeepSeek is working closely with Chinese cybersecurity experts and law enforcement agencies to investigate the incident. Preliminary findings indicate that all attack IPs were recorded and traced back to the United States
The company has condemned the malicious attacks and is taking steps to enhance its cybersecurity measures to prevent future incidents.
Conclusion
The cyberattack on DeepSeek highlights the increasing sophistication and scale of cyber threats faced by organizations worldwide. As AI technology continues to evolve, it is crucial for companies to implement robust cybersecurity measures to protect their valuable assets and maintain the trust of their users. DeepSeek’s experience serves as a reminder of the importance of vigilance and preparedness in the face of ever-evolving cyber threats.