TikTok’s One-Click Account Hijacking Vulnerability

2 years ago

Full video: https://youtu.be/1amVSNfJA0A

Video transcript:
Microsoft has discovered a one-click account hijacking vulnerability in TikTok.
Basically on the Android version of the app you could craft a special link that once clicked could grant an attacker full access to primary functions of the account.
Such as uploading or deleting videos, changing your account bio & so on.
Microsoft has reported this to TikTok at some point way before they mentioned it to the public & it has since been patched.
And luckily so far there is no evidence anyone actually used & exploited this vulnerability.
I don’t really know how Microsoft came across this I mean why are they searching for TikTok vulnerabilities?
But hey, great job Microsoft & now please go back to working on Windows, thank you.

Subscribe for more of the tech news (with an extra dose of me) :3
TikTok: https://www.tiktok.com/@domenstechnews

#tech
#technology #technews #shorts

Loading comments...