(844) 627-8267
(844) 627-8267

A Zero Day TikTok Hack Is Taking Over Celebrity And Brand Accounts | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker

Malicious code is taking over accounts on TikTok, and has already compromised the official presence of celebrities and brands, including Paris Hilton and CNN, according to sources inside the company

The malware is transmitted through DMs, and does not require a download, click, response or any other act from users beyond opening a message. The hacked accounts do not appear to be posting content, and it’s unclear how many have been affected.

TikTok did not respond to a request for comment by press time. Paris Hilton and CNN also did not respond.

TikTok has been hacked multiple times over the last few years. In summer 2023, TikTok acknowledged that as many as 700,000 accounts in Turkey had been compromised due to the company’s use of insecure SMS channels for its two-factor authentication. The issue occurred shortly before Turkey’s heavily contested presidential elections.

In 2022, researchers at Microsoft discovered another vulnerability in the TikTok app that allowed hackers to overtake accounts with a single click. In that instance, accounts were compromised when users clicked on a malicious link.

TikTok’s security and privacy practices have been at the center of lawmaker concerns that the Chinese government could direct its Chinese parent company ByteDance to use the app to spy on Americans (as it did in 2022) or to influence what messages they see.

Those fears culminated in an April law that requires ByteDance to divest from the app or see it banned in the United States. TikTok and ByteDance have challenged the bill in court.

This is a developing story.


ForbesTikTok’s Ban Bill Nightmare Is Just BeginningForbesAs Many As 700,000 Turkish TikTok Accounts Were Hacked Before The Country’s Presidential ElectionForbesMillions Of Teens Are Using A Homework App From TikTok’s Chinese Parent Company

Follow me on TwitterSend me a secure tip


Click Here For The Original Story From This Source.


National Cyber Security