Firehound is a repository of App Store apps exposing data from users (9to5mac.com)

CovertLabs has launched "Firehound," a significant initiative aimed at exposing app store vulnerabilities, particularly among AI-related applications on iOS. The project has uncovered 198 apps that leak sensitive user data, including names, emails, and chat histories, with 196 of these applications implicated in data exposure. Notably, the app "Chat & Ask AI" tops the list, endangering over 18 million users' data with 406 million records exposed. The investigation highlights severe security flaws, chiefly due to poorly secured databases and cloud storage. The significance of Firehound lies in its dual focus: raising awareness in the AI/ML community about user data protection and urging developers to enhance security measures. As more apps utilize AI technologies, ensuring data privacy must be paramount. Firehound's limited access requires user registration, emphasizing the need for responsible data handling practices and the continuous scrutiny of AI application development. Importantly, the project serves as a cautionary tale for users to review app permissions carefully, especially concerning AI chatbots, reinforcing that the rapidly evolving landscape of app development demands greater accountability in safeguarding user information.