Security News
A fourth suspect has been arrested today for his role in the Twitter hack last year that gave attackers access to the company's internal network exposing high-profile accounts to hijacking. The United States Department of Justice announced that Joseph O'Connor, a 22-year old UK national, was detained in Spain on several charges related to the Twitter hack in July 2020.
A Dutch consumer group is launching a 1.5 billion euro claim against TikTok over what it alleges is unlawful harvesting of personal data from users of the popular video sharing platform. The Consumentenbond and a foundation called Take Back Your Privacy demanded Thursday that TikTok pay damages to 1.2 million to 1.6 million Dutch children who use the app.
This includes things like "Faceprints and voiceprints," the policy explained. Reached for comment, TikTok could not confirm what product developments necessitated the addition of biometric data to its list of disclosures about the information it automatically collects from users, but said it would ask for consent in the case such data collection practices began.
The White House dropped Trump-era executive orders intended to ban the popular apps TikTok and WeChat and will conduct its own review aimed at identifying national security risks with software applications tied to China, officials said Wednesday. In revoking some of President Donald Trump's blanket-style orders against Chinese tech companies and replacing them with a narrower approach, the Biden administration has not actually weighed in yet on whether TikTok and other apps pose a danger to Americans.
The policy change, first spotted by TechCrunch, went into effect on June 2. TikTok users who reside in the European Economic Area, the U.K., Switzerland, and other geographies where the service operates are exempted from the changes.
Their most recent socially engineered messages try to convince users to download their fake version of TikTok by saying the app, which is banned in India, is now available, the report found. Threat actors blast out an SMS or WhatsApp message to numbers on the Jio network with the phishing lure message and a link to take advantage of the fraudulent offer, the report showed.
Nebulous privacy and censorship criticisms about video social-media app TikTok have been swirling for months. Security analysts from CitizenLab are the first to collect real data on the platform's source code, and reported that TikTok meets reasonable standards of security and privacy.
TikTok is likely no more of a threat to users than Facebook, according to an analysis by academic research group Citizen Lab that analyzed the video-sharing social networking service's app to probe for security, privacy and censorship issues. The authors considered both TikTok - the app available outside China - and Douyin, the Chinese version of TikTok.
A researcher has earned over $11,000 from TikTok after disclosing a series of vulnerabilities that could have been chained for a high-impact 1-click exploit. As for what an attacker could have done with this exploit, the researcher said "Anything TikTok can do on your device, the exploit can do."
Security concerns largely center on the fact that TikTok is a Chinese company. If you decide to use TikTok - and the same goes for all social media platforms - be careful with what you share, and don't assume any inherent data security or privacy.