Social media sensation TikTok gained immense recognition final 12 months. The music video app hit 1.5 billion downloads close to the top of 2019, beating each Fb and Instagram to develop into essentially the most downloaded non-gaming app of 2019.
Nonetheless, the app has come beneath quite a lot of scrutiny currently and its for all the appropriate causes. A cybersecurity agency CheckPoint has not too long ago found severe vulnerabilities in TikTok that permit hackers entry a person’s profile and their movies.
The vulnerability permits hackers to ship textual content messages which might be disguised as respectable texts from TikTok itself. The malicious messages contained a hyperlink which, as soon as clicked, would give hackers entry to the person’s account and personal movies.
A separate vulnerability would redirect a hacked person to a malicious web site that regarded like TikTok’s homepage, leaving the person’s account open to cross-site scripting and different sorts of assaults.
CheckPoint knowledgeable TikTok concerning the safety flaw as quickly because it was found and the vulnerability has since been patched.
Luke Deshotels, the top of TikTok’s safety crew commented:
TikTok is dedicated to defending person knowledge. Like many organizations, we encourage accountable safety researchers to privately disclose zero-day vulnerabilities to us. Earlier than public disclosure, Examine Level agreed that every one reported points have been patched within the newest model of our app. We hope that this profitable decision will encourage future collaboration with safety researchers.