Security News > 2020 > January > China-Made TikTok App Riddled With Security Holes: Researchers
TikTok is a China-made global phenomenon mobile phone app.
Now it seems that the Chinese government is not the only potential destination for their content that should worry TikTok users - Check Point found multiple vulnerabilities in the app that could easily be exploited.
Finally, the researchers found they could exfiltrate a victim's personal data from TikTok.
Check Point Research informed TikTok developers about the vulnerabilities exposed in this research and a solution was responsibly deployed to ensure its users can safely continue using the TikTok app.
Luke Deshotels, PhD, from the TikTok security team said in a statement, "We encourage responsible security researchers to privately disclose zero-day vulnerabilities to us. Before public disclosure, Check Point agreed that all reported issues were patched in the latest version of our app. We hope that this successful resolution will encourage future collaboration with security researchers."
News URL
Related news
- Germany drafts law to protect researchers who find security flaws (source)
- Canada Orders TikTok to Shut Down Canadian Operations Over Security Concerns (source)
- T-Mobile US 'monitoring' China's 'industry-wide attack' amid fresh security breach fears (source)
- Facing sale or ban, TikTok tossed under national security bus by appeals court (source)
- Researchers Uncover Espionage Tactics of China-Based APT Groups in Southeast Asia (source)
- MUT-1244 targeting security researchers, red teamers, and threat actors (source)