Chinese DeepSeek AI Blocked in Italy Over Data Concerns

Italy’s data protection watchdog has blocked Chinese artificial intelligence (AI) firm DeepSeek’s service within the country, citing a lack of information on its use of users’ personal data.

Background

The development comes days after the authority, the Garante, sent a series of questions to DeepSeek, asking for clarification on its data handling practices.

GitHub Copilot Vulnerabilities

Meanwhile, researchers at Apex have discovered vulnerabilities in GitHub Copilot, a popular AI-powered coding assistant. According to Apex researcher Oren Saban, a small tweak in the code can trigger a more compliant and risk-prone mode, potentially leading to unethical or dangerous suggestions.

Exploiting Copilot Vulnerabilities

Apex found another vulnerability in Copilot’s proxy configuration that can be exploited to circumvent access limitations without paying for usage and even tamper with the Copilot system prompt. However, this attack requires capturing an authentication token associated with an active Copilot license, which GitHub has classified as an abuse issue following responsible disclosure.

Conclusion

The discovery of these vulnerabilities highlights the need for adequate safeguards in AI tools like GitHub Copilot. As Saban noted, "The proxy bypass and the positive affirmation jailbreak in GitHub Copilot are a perfect example of how even the most powerful AI tools can be abused without adequate safeguards."

Stay Informed

If you found this article interesting, follow us on Twitter and LinkedIn to read more exclusive content we post.