The TickTock app recently surpassed 1 billion numbers in the Google Play Store with 100 billion downloads. If this fact of negligence in the protection of both developers is true, then it is clear that the privacy of billions of people is under threat at the moment.
One of the developers, Talal Haj Berry and Tommy Misk Blog post Because of the insecure use of HTTP, hackers can “replace the video shared by TickTock users with another video if they want to, even if the video is from a verified account, but the developers said that this neglect could leak users’ viewing history.”
In their blog post on security threats to Tiktok users, the developers further stated that Tiktok, like any other social media portal, relies on external servers or content distribution networks (CDNs) to provide its data storage. Could. The post states that TickTalk will select encrypted (unsafe) HTTP to transfer CDN video and other media data for
This simply means that anyone viewing this network traffic with this Wi-Fi router can easily read it from TickTalk’s servers and without any other video being detected by the users. Can change with.
The developers say that the reduction is currently running on a version of TickTock, including iOS version 15.5.6 and Android version 15.7.4.