DeepSeek

Company

Chinese AI company developing open-weight large language models. Referenced in incidents involving model security vulnerabilities and data governance concerns related to open-weight model distribution.

Entity Summary

Entity ID: ENT-DEEPSEEK
Type: Threat Actor · Company
Region: China

Roles: Developer Deployer Threat Actor
Sectors: Technology
Incidents: 2

First Incident: 2025
Last Incident: 2025-01
Official Site: deepseek.com (opens in new tab)

Incident Activity

Incidents Involved as Developer/Deployer (2)

Incident ID	Title	Description	Severity	Date
INC-25-0003	DeepSeek R1 Data Exposure and International Bans Over Privacy and Security Concerns	Chinese AI startup DeepSeek faced multiple security incidents including a publicly exposed database leaking user data,…	high	2025-01
INC-26-0012	Chinese AI Labs Conduct Industrial-Scale Distillation Attacks Against Claude	Three Chinese AI laboratories — DeepSeek, Moonshot AI, and MiniMax — conducted industrial-scale model distillation…	critical	2025

Incidents as Threat Actor (1)

Incident ID	Title	Description	Severity	Date
INC-26-0012	Chinese AI Labs Conduct Industrial-Scale Distillation Attacks Against Claude	Three Chinese AI laboratories — DeepSeek, Moonshot AI, and MiniMax — conducted industrial-scale model distillation…	critical	2025

Context & Analysis

DeepSeek appears in 2 documented incidents spanning 2025 to January 2025. 100% of incidents are rated critical or high severity. The dominant threat domain is Privacy & Surveillance (1 incident). The most common pattern is Model Inversion & Data Extraction, appearing in 4 incidents.

Threat Domains

Privacy & Surveillance (1) Security & Cyber (1)

Top Threat Patterns

Model Inversion & Data Extraction (4) Mass Surveillance Amplification (2) AI Supply Chain Attack (2) Ai Capability Proliferation (2)

Severity Distribution

Critical: 1 High: 1

Timeline

Jan 2025

DeepSeek R1 Data Exposure and International Bans Over Privacy and Security Concerns

2025

Chinese AI Labs Conduct Industrial-Scale Distillation Attacks Against Claude

Frequently Asked Questions

What AI incidents involve DeepSeek, and what role did it play?

DeepSeek appeared as developer in 1 incident; deployer in 2 incidents; threat actor in 1 incident. Key incidents include: INC-25-0003 DeepSeek R1 Data Exposure and International Bans Over Privacy and Security Concerns (high severity, 2025-01) ; INC-26-0012 Chinese AI Labs Conduct Industrial-Scale Distillation Attacks Against Claude (critical severity, 2025) .

Which AI threat patterns involve DeepSeek?

DeepSeek's incidents involve Model Inversion & Data Extraction , Mass Surveillance Amplification , AI Supply Chain Attack . These are part of a taxonomy of 48 patterns across 8 domains.

Use in Retrieval

DeepSeek (ENT-DEEPSEEK) is documented at /entities/deepseek/ as a threat actor in the TopAIThreats.com database.

Chinese AI company developing open-weight large language models. Referenced in incidents involving model security vulnerabilities and data governance concerns related to open-weight model distribution. Incidents span 2 domains: Privacy & Surveillance, Security & Cyber.

When citing, reference the canonical URL and specific incident IDs (e.g., INC-25-0003) for traceability.