Cybernews researchers found an unprotected Elasticsearch instance run by Vyro AI leaking user logs in real time from its consumer generative-AI apps. The server had been indexed by IoT search engines months earlier, widening the exposure window.
About 116GB of live logs were exposed, including user AI prompts and bearer authentication tokens that could enable account hijacking across apps with 150M+ downloads.
Search-index datastores need authentication and continuous external exposure monitoring, and session tokens should never be written to plaintext logs.
Guardion enforces policy on every agent action inline — with visibility, tamper-evident evidence, and DLP for agents and MCPs.
Request a demo