It has been reported that multiple vulnerabilities have been found within video sharing app TikTok. Security researchers found that it was possible to spoof text messages to make them appear to come from TikTok. Once a user clicked the fake link, a hacker would have been able to access parts of their TikTok account, including uploading and deleting videos and changing settings on existing videos from public to private. The researchers also found that TikTok’s infrastructure would have allowed a hacker to redirect a hacked user to a malicious website that looked like TikTok’s homepage. This could have been combined with cross-site scripting and other attacks on the user’s account.
A security vulnerability on TikTok exposed users’ personal information to hackers during much of last year.https://t.co/wRH0ZddPQz
— New York Daily News (@NYDailyNews) January 8, 2020
Experts Comments
Linkedin Message
@Tim Mackey, Principal Security Strategist, Synopsys CyRC (Cybersecurity Research Center), provides expert commentary at @Information Security Buzz.
"With 40% of TikTok users being between 10-19, the ability for this user base to detect or understand the implications...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/experts-response-on-tiktok-vulnerability-to-let-hackers-access-users-videos
Facebook Message
@Tim Mackey, Principal Security Strategist, Synopsys CyRC (Cybersecurity Research Center), provides expert commentary at @Information Security Buzz.
"With 40% of TikTok users being between 10-19, the ability for this user base to detect or understand the implications...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/experts-response-on-tiktok-vulnerability-to-let-hackers-access-users-videos
Linkedin Message
@Greg Wendt, Executive Director , provides expert commentary at @Information Security Buzz.
"Organizations must understand that in a connected, global economy - a person’s identity is ultimately the perimeter of an application...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/experts-response-on-tiktok-vulnerability-to-let-hackers-access-users-videos
Facebook Message
@Greg Wendt, Executive Director , provides expert commentary at @Information Security Buzz.
"Organizations must understand that in a connected, global economy - a person’s identity is ultimately the perimeter of an application...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/experts-response-on-tiktok-vulnerability-to-let-hackers-access-users-videos
Linkedin Message
@Robert Prigge, CEO, provides expert commentary at @Information Security Buzz.
"This TikTok vulnerability raises the question of whether similar security issues can be used to exploit 2FA in the future...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/experts-response-on-tiktok-vulnerability-to-let-hackers-access-users-videos
Facebook Message
@Robert Prigge, CEO, provides expert commentary at @Information Security Buzz.
"This TikTok vulnerability raises the question of whether similar security issues can be used to exploit 2FA in the future...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/experts-response-on-tiktok-vulnerability-to-let-hackers-access-users-videos
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Jake Moore, Cybersecurity Specialist, provides expert commentary at @Information Security Buzz.
"Auto updates are always the best way to keep up to speed with apps like TikTok. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/experts-response-on-tiktok-vulnerability-to-let-hackers-access-users-videos
Facebook Message
@Jake Moore, Cybersecurity Specialist, provides expert commentary at @Information Security Buzz.
"Auto updates are always the best way to keep up to speed with apps like TikTok. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/experts-response-on-tiktok-vulnerability-to-let-hackers-access-users-videos