Friday, October 23, 04:33
Home security TikTok: Vulnerabilities allow hackers to take control of accounts

TikTok: Vulnerabilities allow hackers to take control of accounts

TikTokLately, the Chinese application TikTok is at the center of discussions. Earlier this week there were reports that claimed the app had incorporated a new feature that facilitates creation deepfake video. According to a new report, TikTok is now found with "multiple" vulnerabilities security.

The vulnerabilities were discovered by the company security Check Point. According to researchers, vulnerabilities could allow malicious hakcers take control of TikTok accounts and handle their content by uploading or deleting videos and exposing their personal information users.

The revelation of vulnerabilities will bring a new wave criticism against enforcement, especially by their politicians USA, who have stressed many times that TikTok (owned by the company) ByteDance), is a threat to the security of the country.

The researchers Check Point found that hackers can send one fake text message on the victim's cellphone, which is supposed to come from the TikTok application. On the application site, there is a feature that allows users send a text message to themselves so they can download the app.

But the attackers could create a false message malicious link and send it to the victims. Once users open the link, the hackers acquire access and take control of the account.

In addition to this, researchers discovered another vulnerability in a TikTok web domain that allows malicious code to be inserted. The code allowed it theft personal information of users.

Check Point said it informed application managers about the existence of vulnerabilities and they released patches to correct them.

“TikTok is committed to protecting users' data. Like many other organizations, we encourage security researchers to disclose zero day vulnerabilities privately, ”said a TikTok spokesman. “Prior to its release, CheckPoint confirmed that all of the above issues had been fixed in the last version of our application. We hope that this successful solution will encourage our future cooperation with security researchers. "

However, the update is not going to alleviate US concerns that consider TikTok national threatening, since they believe the app sends user data to the Chinese government.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

How to remove Edge tabs from Alt + Tab in Windows 10

Starting with the October 2020 update, Windows 10 now displays Microsoft Edge browser tabs in the Alt + Tab task ...

Patient information is held for ransom by hackers

A company offering psychological support and psychotherapy services to thousands of patients in Finland has fallen victim to hackers. As the company stated, ...

ESafety believes that social media authentication would not be practical

Australian eSafety Commissioner Julie Inman-Grant has dismissed the practice of verifying users' identities on social media.

First beta version of the "1Password" application for Linux

One and a half months after the first rumors about the release of the 1Password application for the Linux desktop, the co-founder of Dave Teare announced now ...

The price of Bitcoin skyrockets after PayPal adds cryptocurrency

The price of Bitcoin reached a very high record on Wednesday, after the announcement of PayPal for the integration of cryptocurrency in the online ...

Dr Reddy is closing its laboratories worldwide following a data breach

The pharmaceutical company Dr Reddy 's Laboratories (DRL) was forced to close its laboratories worldwide, after a data breach that ...

PayPal lets users use cryptocurrency

PayPal on Wednesday announced a new feature that will allow users to buy, store and sell cryptocurrency.

Activists are developing face recognition technology to reveal the identities of police officers

In early September, Portland, Oregon City Council held a virtual meeting to consider legislation that ...

Tesla share rises almost 5%

Tesla's Elon Musk released the results for the third quarter of 2020 on Wednesday. The share rose almost 5% on ...

Account Takeover Attacks: How to Avoid Them?

Account Takeover (ATO) attacks are a form of theft, often used by criminals. The attackers are trying to break into accounts ...