A recent data report revealed a potential privacy nightmare for TikTok users: A security researcher discovered that TikTok’s in-app browser injects JavaScript into external websites, causing potential security risks. This is just the latest security snafu for the social media giant, which is still facing scrutiny from US lawmakers after leaked audio revealed the video-hosting service may have been sharing US user data with China.
TikTok is wildly popular and owned by a Chinese company. Given the political tension between the US and China, it’s unsurprising that many US-based news media outlets jumped at the chance to report on security researcher Felix Krause’s findings. On his website, Krause said his tests show that when a user opens a webpage inside TikTok’s iOS app, the in-app browser injects a code that subscribes to all keyboard inputs and every tap on the screen. According to Krause, “We can’t know what TikTok uses the subscription for, but from a technical perspective, this is the equivalent of installing a keylogger on third-party websites.”
A TikTok spokesperson admitted the app injects JavaScript into websites but insisted, “Contrary to the report’s claims, we do not collect keystroke or text inputs through this code, which is solely used for debugging, troubleshooting, and performance monitoring.”
This story is from the October 2022 edition of PC Magazine.
Start your 7-day Magzter GOLD free trial to access thousands of curated premium stories, and 9,000+ magazines and newspapers.
Already a subscriber ? Sign In
This story is from the October 2022 edition of PC Magazine.
Start your 7-day Magzter GOLD free trial to access thousands of curated premium stories, and 9,000+ magazines and newspapers.
Already a subscriber? Sign In
AUDIO
AUDIO
SMART HOME
SMART HOME
T Mobile
Mobile
Lenovo Legion 5 Pro Gen 7 (2022): Nearly an Editors' Choice
A solid gaming laptop for under 2,000
Apple TV 4K 3rd Generation): Best for the Apple-Centric
A powerful, feature-rich media streamer that’s pricier than most
20 Tips for Leveling Up Your Work-at-Home Game
Whether you're new to working remotely or just looking fo do if beffer, fhese fips can help you stay productive and maintain balance.
12 Google Calendar Tricks You're Probably Not Using
Wondering how to share your Google Calendar? Want to add a new calendar? Here are the tips you need.
SimpliSafe Home Security System: Affordable Ease of Use
Affordable security with a focus on flexibility
Honda Unveils First All-Electric SUV, Built on GM's Battery Platform
The Honda Prologue battery-electric SUV arrives in 2024 and will use the Ultium battery technology developed by General Motors.
We Must Save Streaming Video Before It’s Too Late
A generation of art risks extinction if the companies that own streaming services don’t believe their vast libraries are worth preserving. We have to act now to save it.
