Comment on Why is TikTok seen as privacy invading and bad, but Facebook is fine?
Amaltheamannen@lemmy.ml 9 months agoGot any source for that TikTok RCE exploit? All I could find was a single bug 3 years ago.
Comment on Why is TikTok seen as privacy invading and bad, but Facebook is fine?
Amaltheamannen@lemmy.ml 9 months agoGot any source for that TikTok RCE exploit? All I could find was a single bug 3 years ago.
skulblaka@startrek.website 9 months ago
At this point it’s possible that it’s been fixed. I remember hearing about it a couple years ago, in the context of the bug, but I also remember hearing about how a component of their updater, when the app was broken down and deobfuscated, would just run whatever remote code package was handed to it without alerting the end user.
Even if the RCE has been fixed or removed though, the rest of their security theater is unreasonably bad, and I don’t trust them near enough to ever install their app.