Tiktok is an chinese application which is one of the most popular application all around the world. Recently, Tiktok has complete its more than 1 billion downloads on google play store. In order to test how risky is this chinese application, a group of developers who known by the name of Mysk has used a simple hacking trick and posted a fake video about COVID-19 from the official Tiktok account of World Health Organisation (WHO), American Red cross, Tiktok official and British Red cross.
According to the developer they get information that Tiktok uses insecure HTTP instead of HTTPS to deliver content to users they simply tricked Tiktok app to connect to a fake server. They says this hack is to show vulnerability of using HTTP instead of HTTPS.
According to the developer they get information that Tiktok uses insecure HTTP instead of HTTPS to deliver content to users they simply tricked Tiktok app to connect to a fake server. They says this hack is to show vulnerability of using HTTP instead of HTTPS.
As you have seen in video where Mysk developers has posted a video which provides fake information about COVID-19 over the World Health Organisation (WHO) official account in order to check the vulnerability of Tiktok app.
The hack was possible as Tiktok uses HTTP to pull media content from company's Content Delivery Network. The benefit of using HTTP that they get fast data transfer speed but the major drawback is the lack of encryption which puts user privacy at risk. This was a simple Domain Name System (DNS) attack by a developers in order to test data privacy of Tiktok app.
Here is another video in which various popular accounts including American Red Cross, UN Migration, British Red Cross and even Tiktok's own official account shows videos which provides false information of COVID-19.
The developer has no wrong intention in mind they simple want to showcase that app like Tiktok and other apps which stores users data, they have to keep user privacy as a highest priority instead of fast data transfer speed. If this attacked was perform by professional hackers then billions of Tiktok users lose their data privacy.
In India, more than lakhs of Tiktok videos uploaded everyday but they don't know whats going on behind the scene. By reading this blog and seeing those videos you have to make your own decision between creating Tiktok videos and get popular among the people or delete you account and uninstall this app in order to protect your privacy.
Comments
Post a Comment
Please do not enter any spam comments