TikTok Riddled With Security Flaws

2020-01-08 14:30

Researchers say the most serious vulnerability in the platform could allow attackers to remotely take control over parts of victims' TikTok account, such as uploading or deleting videos and changing settings on videos to make "Hidden" videos public.

"Many of us use the TikTok app to share enjoyable moments and snip bits of fun memories in the form of a short video clips," researchers with Check Point Research said on Wednesday.

The app's parent company, ByteDance, was notified in November of the flaws and fixed the issue on Dec. 15, researchers said.

"TikTok is committed to protecting user data. Like many organizations, we encourage responsible security researchers to privately disclose zero day vulnerabilities to us," a TikTok spokesperson said in a media statement.

The security flaws come as backlash swells around TikTok's relationship with China, leading the United States Army this week to announce that U.S. soldiers can no longer have the social media app on government-owned phones.

News URL

https://threatpost.com/tiktok-riddled-with-security-flaws/151616/

#security #tiktok