TikTok Users' Personal Data Purportedly Breached via Insecure Server Hosted on Alibaba Cloud
Kiwi Farms goes offline as Cloudflare abandons its protective posture, China accuses NSA of hacking university, Samsung confirms data breach, Beloved Let'sEncrypt founder dies at 42, much more
Publishing note: Although I said we weren’t publishing today in honor of the U.S. Labor Day holiday, the amount of infosec news coming out since Friday made me change my mind.
Metacurity is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.
Several cybersecurity analysts say they discovered what is purportedly a breach of an insecure server hosted on Alibaba Cloud that allowed access to TikTok’s storage, which they believe contained personal user data.
Last week Microsoft Corp. said it had found a “high-severity vulnerability” in TikTok’s Android application, “which would have allowed attackers to compromise users’ accounts with a single click.” TikTok said the claims of a breach discovered over the weekend were incorrect. “Our security team investigated this statement and determined that the code in question is completely unrelated to TikTok’s backend source code,” a spokesperson said.…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.