← Latest news 
5000 vibe coded apps exposed sensitive corporate data via public URLs indexed by Google
Business
Published on 8 May 2026
About 1.3% of exposed apps contained sensitive info
A RedAccess study finds 380,000 publicly accessible assets built with vibe coding tools, with around 5,000 containing sensitive corporate data. Verified examples include unredacted customer chats, medical trial listings, incident response records, and exposed bank information. The issue stems from platform defaults that publish apps unless manually secured, turning shadow AI into a production risk layer.
- 380,000 public vibe coded assets found across common platforms
- 5,000 exposed apps contained sensitive corporate data
- Healthcare and finance exposures may trigger HIPAA UK GDPR or LGPD
- Fix starts with scanning platform domains and blocking unauthenticated access
Read the full story at Venture Beat
This summarization was done by Beige for a story published on 
Venture Beat