Researchers Reveal Persona Exposed Watchlist Database

Independent researchers on Feb. 16–18, 2026 disclosed an exposed Google Cloud instance at 34.49.93.177 tied to Persona that served openai-watchlistdb certificates and 2,456 public TypeScript source maps. The artifacts include facial-recognition code, watchlist screening rules, and Suspicious Activity Report logic linked to OpenAI integrations; Persona’s CEO has engaged and committed to written answers.