Struct Chat Data Leak

30.01.2025 1 minutes Author: Newsman

The popular tool Struct Chat, which uses artificial intelligence to organize work chats, has been found to be unsecured: a vulnerability in Apache Kafka Broker allows attackers to intercept personal messages, access tokens, and internal company information. Cybersecurity researchers have discovered that Struct Chat was transmitting an unlimited amount of user data through unsecured servers.

Among the information that was constantly leaked:

  • Access tokens, user IDs, first and last names
  • Email addresses
  • Chats with interlocutors and AI bots
  • Links to internal resources, CI/CD processes
  • Events and changes in Slack accounts

Struct Chat continues to transmit user data to the public, despite numerous warnings from researchers. Companies and ordinary users should avoid untrusted AI services and review their access policies for corporate chats. It is important to change passwords and limit the sharing of sensitive data through such platforms.

Subscribe
Notify of
0 Коментарі
Oldest
Newest Most Voted
Other related articles
Found an error?
If you find an error, take a screenshot and send it to the bot.