AI startup WotNot, which specializes in creating chatbots, leaked 346,381 files, including passports, medical records, resumes and other sensitive data. The leak was caused by Google’s misconfigured cloud storage, which left this data accessible without permission.
With operations in India and the US, WotNot serves more than 3,000 clients, including Merck, the University of California, Zydus Group and others. WotNot offers companies to create their own chatbots for various platforms such as websites, WhatsApp and Facebook Messenger. However, the incident shows that additional links in the data transmission chain significantly increase the risk of leaks and obscure IT threats.
The incident highlights the importance of regular audits, access restrictions and the use of encryption to protect data.