Security News > 2022 > September > TikTok denies security breach after hackers leak user data, source code
TikTok denies recent claims it was breached, and source code and user data were stolen, telling BleepingComputer that data posted to a hacking forum is "Completely unrelated" to the company.
The user shared screenshots of an alleged database belonging to the companies, which they say was accessed on an Alibaba cloud instance containing data for both TikTok and WeChat users.
"This is an incorrect claim - our security team investigated this statement and determined that the code in question is completely unrelated to TikTok's backend source code, which has never been merged with WeChat data." - TikTok.
TikTok also told us that the leaked user data could not result from a direct scraping of its platform, as they have adequate security safeguards to prevent automated scripts from collecting user information.
Troy Hunt, the creator of the HaveIBeenPwned data breach notification service, confirmed in a Twitter thread that some of the data were valid.
"Database hunter" Bob Diachenko has validated the leaked user data as real, but couldn't provide any concrete conclusions about the origin of the data.
News URL
Related news
- Hacker claims Giant Tiger data breach, leaks 2.8M records online (source)
- Microsoft confirms memory leak in March Windows Server security update (source)
- Hackers poison source code for largest Discord bot platform (source)
- Hackers poison source code from largest Discord bot platform (source)
- Hackers exploit Ray framework flaw to breach servers, hijack resources (source)
- Finland confirms APT31 hackers behind 2021 parliament breach (source)
- U.S. Cyber Safety Board Slams Microsoft Over Breach by China-Based Hackers (source)
- Researchers Identify Multiple China Hacker Groups Exploiting Ivanti Security Flaws (source)
- Chipmaker Nexperia confirms breach after ransomware gang leaks data (source)
- 51% of enterprises experienced a breach despite large security stacks (source)