TikTok and 53 other iOS apps have access to sensitive data
Security researchers Talal Haj Bakry and Tommy Mysk have discovered privacy issues with 53 iOS apps, including the TikTok social network.
A violation of confidentiality is manifested in the fact that applications repeatedly read any text on the clipboard that computers and other devices use to store data. According to experts, programs for no apparent reason intentionally access the iOS programming interface, which extracts text from the user's clipboard.
In many cases, a breach of confidentiality is not limited to data stored on a local device. If your iPhone or iPad uses the same Apple ID as other Apple devices and is approximately 3 meters apart, they all share a common clipboard. Thus, the contents of the application of one device can be copied and pasted into the application on another.
As it became known earlier, Tik Tok also accesses the clipboard every few seconds. According to the developers, this way TikTok protects users from spam, but despite their further promises to stop this practice, the application continues to access Apple users' confidential data, including passwords, cryptocurrency wallet addresses, account reset links, and private messages. >
Reading the clipboard occurs every time the user enters a punctuation mark or press the space bar while writing a comment.
Researchers have found that the following iOS apps read user’s clipboard data each time the application is launched: news programs (ABC News, Al Jazeera English, CBC News, CBS News, CNBC, Fox News, News Break, New York Times, etc.) , games (Bejeweled, Fruit Ninja, Plants vs. Zombies ™ Heroes, PUBG Mobile, Total Party Kill, etc.), social networks (TikTok, ToTalk, Tok, Truecaller, Viber, Weibo and Zoosk) and others.