U.S. military data left exposed at an a16z startup for 150 days

Strix, an autonomous AI hacking agent, uncovered a catastrophic security vulnerability at Schemata, an Andreessen Horowitz-backed company holding active Department of Defense contracts. Schemata's AI-powered virtual training platform for the military had virtually no authorization layer on its API, leaving highly sensitive data completely exposed. This foundational failure allowed a low-privilege account to access a vast array of confidential information, underscoring severe risks for national security and service members.

• Vulnerability Discovery: Strix, initially used as a benchmark for the platform, easily bypassed any supposed authorization with a standard user account, demonstrating a complete lack of tenant isolation and permission checks.
• Exposed Data: The vulnerability exposed the entire user base (including names, emails, bases of U.S. service members), hundreds of confidential military training manuals (some explicitly marked 'confidential' and covering sensitive topics like explosive ordnance handling), and even allowed potential modification or deletion of courses.
• Disclosure Ordeal: Strix attempted a responsible disclosure for 150 days, starting December 2, 2025. Schemata's CEO initially questioned their motives, and the company failed to respond to multiple follow-ups regarding the critical vulnerability. Remediation only occurred on May 1, 2026, after Strix informed them of impending publication.
• Regulatory Implications: The exposure likely constitutes a reportable incident under federal regulations like DFARS 252.204-7012 and CMMC, given the handling of Controlled Unclassified Information (CUI).
• Call to Action: Strix urges Schemata customers to demand transparency regarding the breach and advises developers to prioritize robust authorization and continuous security validation, especially for sensitive data.