- ‘American Dirt’ is a metaphor for a white country built on the back of immigrants 2 Weeks Ago
- This woman told two students to ‘speak English’ and people are not having it Friday 9:53 PM
- Iconic 1968 drag documentary ‘The Queen’ finally released on Netflix Friday 9:29 PM
- This TikTok account for Chancellor Palpatine is hilarious Friday 8:43 PM
- Did the Space Force logo rip off Star Trek? Friday 6:24 PM
- Disabled people with service dogs say Uber, Lyft drivers are denying them rides Friday 3:25 PM
- TikTok teen famous for greasy hair ends her 8-year reign Friday 2:48 PM
- Police handcuff brown man at subway station for carrying a toy gun Friday 1:20 PM
- Fake clip of Sanders quoting infamous ‘hot chip’ tweet is duping people online Friday 1:16 PM
- The Mars Volta’s Cedric Bixler-Zavala alleges Scientologists behind dog’s death Friday 12:46 PM
- Eminem responds to critics: ‘This album was not made for the squeamish’ Friday 12:42 PM
- ‘The poet, the poem’ meme takes iconic lines and turns them into art Friday 12:40 PM
- People are making dark memes about the coronavirus Friday 12:27 PM
- Trump camp’s ‘head on a pike’ impeachment threat hit with memes Friday 11:34 AM
- What is the #FreeBritney movement, and why is Cher tweeting about it? Friday 10:52 AM
Israel-based cybersecurity firm Check Point Research released a report on their findings today.
The vulnerabilities they found in the app could have allowed hackers to access “hidden” videos, upload videos, delete videos, manipulate content on TikTok accounts, and reveal personal information like email addresses.
Hackers could send users a text message with a malicious link that looked like it was coming from TikTok that would have provided them the ability to take control of a user’s account. They also found that the app’s website was vulnerable to an attack where malicious scripts could be injected.
TikTok learned about Check Point’s findings on Nov. 20 and fixed the vulnerabilities by Dec. 15, according to the New York Times.
“Like many organizations, we encourage responsible security researchers to privately disclose zero-day vulnerabilities to us,” Luke Deshotels, the head of TikTok’s security team, told the Times. “Before public disclosure, Check Point agreed that all reported issues were patched in the latest version of our app. We hope that this successful resolution will encourage future collaboration with security researchers.”
The app, which is owned by China-based company ByteDance, has come under some scrutiny recently, with both the U.S. Army and the U.S. Navy banning it from government-issued phones, as they consider it a “cyber threat.”
Andrew Wyrich is a politics staff writer for the Daily Dot, covering the intersection of politics and the internet. Andrew has written for USA Today, NorthJersey.com, and other newspapers and websites. His work has been recognized by the Society of the Silurians, Investigative Reporters & Editors (IRE), and the Society of Professional Journalists (SPJ).