Chinese short video app TikTok has confirmed fixing a vulnerability in its app that allowed hackers to manipulate content, delete videos, upload unauthorized videos, make private ‘hidden’ videos public and extract confidential information of users via SMS containing a malicious link.
US-based cybersecurity firm Check Point Research exposed the vulnerability — its team discovered multiple loopholes which a potential hacker can use to conduct the attack which gives total control over TikTok accounts.
Media reached out to ByteDance, which runs TikTok, to understand the extent of vulnerability of the breach and how it affected users in India. The company did not responded till the time of publishing.
“Many of us use the TikTok app to share enjoyable moments and snip bits of fun memories in the form of a short video clips,” researchers with Check Point Research said on Wednesday. “But as some have experienced, there is often a fine line between fun clips to private, even intimate assets being compromised while trusting to be under the protection from the apps we use.”