“In general,” Vanunu says, “these vulnerabilities can exist on many digital platforms, but, with TikTok’s install base, the implications are high. TikTok isn’t alone in this- albeit it has been caught out before. But the clamor for new features that expand the viral reach of those apps or increase our hours spent on them introduces weaknesses that can be exploited. In reality, the details here are less important than the broader issue-we share private data with social media apps and we expect that data to be safeguarded. The detailed technical POC behind Check Point’s research has been shared in its report. Users are advised to keep their apps updated, especially hyperscale apps which provide such a wide attack surface, but in this instance the fix doesn’t require a user update. The specific issue relates to TikTok’s “find friends” feature, where a user’s contacts are matched It has now been fixed server-side. Now, just as Trump unpacks his bags in Florida, its TikTok report has come out. The security team at Check Point says it was prompted into finding this vulnerability by last year’s furor. We continue to invest in strengthening our automation defenses to minimize these types of attacks.” We appreciate the efforts of Check Point in identifying potential issues so that we can resolve them before users are impacted. Responding to the report, TikTok told me “the security, privacy, and safety of the TikTok community are our highest priorities.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |