Security News > 2020 > January > China-Made TikTok App Riddled With Security Holes: Researchers
TikTok is a China-made global phenomenon mobile phone app.
Now it seems that the Chinese government is not the only potential destination for their content that should worry TikTok users - Check Point found multiple vulnerabilities in the app that could easily be exploited.
Finally, the researchers found they could exfiltrate a victim's personal data from TikTok.
Check Point Research informed TikTok developers about the vulnerabilities exposed in this research and a solution was responsibly deployed to ensure its users can safely continue using the TikTok app.
Luke Deshotels, PhD, from the TikTok security team said in a statement, "We encourage responsible security researchers to privately disclose zero-day vulnerabilities to us. Before public disclosure, Check Point agreed that all reported issues were patched in the latest version of our app. We hope that this successful resolution will encourage future collaboration with security researchers."
News URL
Related news
- Researchers Uncover Major Security Vulnerabilities in Industrial MMS Protocol Libraries (source)
- China’s infosec leads accuse Intel of NSA backdoor, cite chip security flaws (source)
- WeChat devs introduced security flaws when they modded TLS, say researchers (source)
- Tesla, Intel, deny they're the foreign company China just accused of making maps that threaten national security (source)
- Researchers Discover Severe Security Flaws in Major E2EE Cloud Storage Providers (source)
- Apple Opens PCC Source Code for Researchers to Identify Bugs in Cloud AI Security (source)
- Germany drafts law to protect researchers who find security flaws (source)
- Canada Orders TikTok to Shut Down Canadian Operations Over Security Concerns (source)
- T-Mobile US 'monitoring' China's 'industry-wide attack' amid fresh security breach fears (source)