WotNot Exposes 346,000 Customer Files Due to Misconfiguration
/ 1 min read
AI chatbot provider WotNot exposes 346,000 customer files. Researchers uncovered a publicly accessible Google Cloud Storage bucket containing sensitive personal information from WotNot’s customers, including identification documents, medical records, and resumes. The exposure resulted from misconfigured cloud storage policies linked to WotNot’s free plan, which lacks adequate security measures. WotNot acknowledged the oversight and emphasized that enterprise customers receive private instances to ensure data security. This incident highlights the risks associated with sharing personal information with third-party services and underscores the importance of verifying data handling practices before submission. Cybersecurity experts recommend avoiding sensitive data exchanges with chatbots and opting for secure communication methods instead.