Microsoft reveals dangerous 'bug' in Android version of TikTok app

 This dangerous security vulnerability (bug) in the Android version of the TikTok application was discovered by Microsoft's research division.

Microsoft reveals dangerous 'bug' in Android version of TikTok app

Microsoft discovered a security vulnerability in the Android version of the TikTok app. This vulnerability is caused by a malicious bug that allows users to tap on malicious links on the social media platform . 

Details regarding the security exploit were provided by the Microsoft 365 Defender Research Team division in a blog post. Launching The Verge (1/9), the vulnerability affects the functionality of links in the TikTok application on Android devices.

This bug was discovered by Microsoft in February 2022 in the Android version of the TikTok application. At that time, Microsoft also pinned the label 'high level of vulnerability' to malicious loopholes contained in the short video application for Android devices. 

The reason is, this bug can be used by hackers to hijack TikTok user accounts on Android devices . Once taken over, hackers will have access to all the main functions of the account, including the ability to upload videos, send messages to other users to view private videos stored in the account.

To hijack the targeted TikTok account, hackers will take advantage of this Microsoft discovered bug by creating a link to display in the application. If this link is clicked by the account owner, it will automatically activate a series of codes that can give hackers access to the account. 

Microsoft disclosed this vulnerability to TikTok shortly after it was discovered. Furthermore, Microsoft confirmed, TikTok immediately responded to the reports that had been made. 

"We provide them with information about the vulnerability and collaborate to help fix this issue," said Tanmay Ganacharya, Partner Director for Security Research at Microsoft Defender for Endpoint . “TikTok responded quickly, and we commend the efficient and professional resolution of the security team.”

Meanwhile, TikTok revealed, it is likely that no victims were targeted by hackers exploiting bugs . TikTok spokeswoman Maureen Shanahan said she had responded to the report quickly. 

“The potential impact is huge, as it affects all global variants of the TikTok Android app, which has a total of over 1.5 billion downloads on the Google Play Store. However, there is no evidence that it was exploited by malicious parties," added Maureen. 

Although it has been fixed, it's a good idea for TikTok users on Android to immediately update their app to a newer version. This is done to avoid unwanted things in their account in the future.