2025-08
Data Leakage
xAI (Grok)

xAI's Grok published shared chats that Google indexed, exposing 370K conversations

What happened

Grok's share feature quietly published each shared conversation to a public URL that search engines then indexed, without clearly warning users. Reporters found hundreds of thousands of conversations searchable on Google, including highly sensitive prompts.

Impact

More than 370,000 Grok conversations became publicly searchable, exposing medical, psychological, and business questions and at least one password.

How this could have been prevented

Share features should default to non-indexable private links with explicit, unambiguous consent before any conversation is made public.

Sources

More data leakage incidents

Would runtime governance have caught this?

Guardion enforces policy on every agent action inline — with visibility, tamper-evident evidence, and DLP for agents and MCPs.

Request a demo