Canva User Data Surfaces in Russian AI Leak

A limited set of Canva creator data has been uncovered in a newly leaked database associated with Chroma, a Russian-operated AI chatbot project, according to cybersecurity reporting by Hackread. The exposed data was discovered among files linked to the Chroma platform, which is believed to be used for collecting and processing online information to enhance chatbot performance.

The leak reportedly involves a small number of Canva creators, though the full scope and origin of the data remain unclear. While the breach does not appear to contain sensitive financial or authentication details, the presence of user data in the database raises concerns about unauthorized data scraping and misuse.

Security researchers noted that the Chroma database may have been assembled using publicly available sources, but the inclusion of Canva-specific information suggests targeted data collection. The incident highlights ongoing risks surrounding AI training datasets and underscores the need for stronger oversight of data handling practices within emerging technologies.