2026-02
Data Leakage
Codeway (Chat & Ask AI)

Chat & Ask AI leaked 300M messages via a public Firebase misconfiguration

What happened

An independent researcher found that the popular Chat & Ask AI app had left its Firebase security rules open to the public: anyone who knew the project URL could read the entire datastore without authentication. The same scanning effort found roughly half of 200 iOS apps examined shared the identical misconfiguration.

Impact

About 300 million user messages tied to roughly 25 million users were exposed; the developer locked the database down within hours of the 2026-02-09 disclosure.

How this could have been prevented

Enforcing authenticated, least-privilege Firebase security rules and auditing them before release prevents anonymous access to the entire conversation store.

Sources

More data leakage incidents

Would runtime governance have caught this?

Guardion enforces policy on every agent action inline — with visibility, tamper-evident evidence, and DLP for agents and MCPs.

Request a demo