TikTok is an app popular with teens and young adults. It’s a social media platform where users can share short-form videos, similar to Vine or Snapchat. It has frequently been in the news lately over its security, with multiple publishers and companies releasing information about the app. It all started when in 2019 the Peterson Institute called the app a national security threat.
Then with the iOS 14 betas we saw that TikTok secretly accesses data on your clipboard, thanks to a new security feature in the OS. Now, even the U.S. government considering a ban on the app. Here’s what the experts say.
First, we have the Redditor who claimed to have reverse engineered the app. User “bangerlol” says the app collects a lot of information from your phone, like the hardware components, apps you have installed, network data, whether you’re rooted/jailbroken, and leak your email address(s) in the apps HTTPS REST API.
Next, we have security firm Zimperium. Its full analysis of TikTok is behind a barrier (you’ll need to give them your company name, title, email address, etc). Using its z3A Advanced Application Analysis it said both the iOS and Android versions of TikTok has high privacy and medium security risks, with a score of 98/100 for privacy and 82/100 for security (high score is bad).