<p>As generative AI platforms like ChatGPT and Claude become embedded in enterprise workflows, a new class of large language models from China is also gaining traction globally. Among them, <a href=”https://www.techtarget.com/whatis/feature/DeepSeek-explained-Everything-you-need-to-know”>DeepSeek</a> — an open-source, bilingual Chinese-English LLM developed by DeepSeek AI — is drawing attention for its advanced technical capabilities and claims to work more cheaply and efficiently than American-based rivals. </p>
<p>Yet, for cybersecurity leaders and IT risk managers, DeepSeek introduces a new spectrum of cybersecurity, privacy and compliance risks that demand immediate attention.</p>
<section class=”section main-article-chapter” data-menu-title=”DeepSeek security risks”>
<h2 class=”section-title”><i class=”icon” data-icon=”1″></i>DeepSeek security risks</h2>
<p>DeepSeek is a family of <a href=”https://www.techtarget.com/whatis/definition/large-language-model-LLM”>LLMs</a> that relies on hundreds of billions of tokens and boasts performance comparable to that of <a href=”https://www.techtarget.com/searchenterpriseai/tip/GPT-35-vs-GPT-4-Biggest-differences-to-consider”>GPT-3.5 and GPT-4</a>. Unlike many Western LLMs, DeepSeek is optimized for Chinese-English bilingual tasks and has gained popularity due to its open licensing and cost-effectiveness.</p>
<p>From a cybersecurity standpoint, DeepSeek stands out because it is developed and maintained in China, where data protection laws and oversight structures differ significantly from Western norms. Some versions are hosted in China-based cloud infrastructure and are therefore subject to Chinese laws requiring private companies to cooperate with state intelligence.</p>
<p>Finally, due to DeepSeek’s <a href=”https://www.techtarget.com/whatis/definition/open-source”>open source</a> roots, enterprises can’t easily detect its use, especially if it’s integrated into internal tools or workflows. Let’s delve deeper into some of the most important DeepSeek cybersecurity risks.</p>
<h3>Cyberespionage and nation-state threats</h3>
<p>DeepSeek’s development in a jurisdiction with Chinese state-level monitoring requirements raises significant cyberespionage concerns. Any data submitted to DeepSeek APIs or hosted versions –especially in regulated
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
Read the original article: