What caused the Sears Home Services data leak?

The leak was caused by three publicly accessible databases that were neither password-protected nor encrypted, exposing AI chatbot logs and audio recordings.

What AI systems were involved in the exposure?

The exposed data was linked to the 'Samantha' AI chatbot and the 'KAIros' AI ecosystem used for service scheduling and diagnostics.

What kind of sensitive data was leaked?

The leak included biometric voice recordings, full names, home addresses, email addresses, phone numbers, and repair appointment details.

How much data was exposed in total?

A total of 3.7 million records were exposed, comprising over 4.3 terabytes of chat transcripts and audio files.

How did the company respond to the discovery?

Parent company Transformco restricted access to the databases within 24 hours of receiving the researcher's disclosure notice.

Incident

Researcher Reports Data Leak of Sears Home Services AI Chatbot Logs and Audio Recordings

published: March 17, 2026

Learn More

The independent security researcher Jeremiah Fowler reports a data leak in Sears Home Services, an appliance repair provider in the United States,

The leak exposed records from its AI-driven customer service platforms. The leak was caused by publicly accessible, unencrypted databases containing chat logs and audio recordings associated with the 'Samantha' and 'KAIros' AI virtual assistants from between 2024 and 2026.

The misconfigured systems hosted 4.3 terabytes of data that included over 2.1 million chat transcripts, 200,000 scheduling logs, and 1.4 million audio recordings. The compromised data includes:

Voice recordings (audio files)
Full names
Physical home addresses
Email addresses
Phone numbers
Product and account details
Service, repair, and delivery appointment information
Internal metadata including timestamps and unique IDs

The number of affected individuals is not disclosed. Sears' parent company, Transformco, restricted public access to the databases within 24 hours. It's unclear how long the data was exposed or whether the databases were managed directly by Sears or a third-party contractor.

Researcher Reports Data Leak of Sears Home Services AI Chatbot Logs and Audio Recordings

Read More
Online jewelry retailer Glamira breached, account data leaked
Korean online bookstore Yes24 hit by ransomware attack, …
Dymocks Bookstore Chain reports data breach, customer data …
Dollar Tree reports third-party data breach, exposing 2 …
Lush cosmetics reports cyberattack