The khakis follow each other and look the same…? It all started with a disturbing post on the Breach Forums website on September 3, 2022. A group of hackers known as BlueHornet and AgainstTheWest have indeed hosted a huge 790 GB database exposed by hacking the database and source code of TikTok and the Chinese messenger WeChat. The group previously reported a massive hack on Twitter. In a tweet, the hackers write: “Who would have thought that TikTok would choose to store all the source code of their backend in one instance of Alibaba Cloud, protected with a rotten password?”. According to The Hacker News, independent security experts are still evaluating allegedly hacked data from TikTok.
TikTok: hack could threaten 2.05 billion app users
On the one hand, Bob Dyachenko (Security Discovery) claims, for example, that the leak is “real” and that the data appears to have come from a third party, Hangzhou Julun Network Technology Co., Ltd. Expert Troy Hunt (founder of HaveIBeenPwned.com) believes that son side on Twitter after starting the analysis of the base: “It is still difficult to be categorical, some data are well in line with production information, but on talks about data that is usually in the public domain.” And add: “Some of this data seems wrong, but it might as well be data from test or non-production data. We can say that at the moment there is food and drink in the database provided by the pirates. Aside from the hack, showing that TikTok is sharing sensitive data with third parties based in China could have serious repercussions for the network. social, especially in the west. Indeed, app publisher Bytedance has been in turmoil for some time now – the network social TikTok is regularly accused of dubious data security practices, as well as ties to the Chinese government. Net social At the moment, it categorically denies any leak or compromise of its servers. A TikTok official explains to TheHackersNews: “We have confirmed that all of the data samples in question contain public data and are not the result of a breach of TikTok networks or databases. Snippets also contain data from one or more third-party sources not affiliated with TikTok. We do not believe users need to take any action and remain committed to keeping our global community safe.” Read also – TikTok – have you been hacked? Microsoft Found a Breach Finally, note that after the Breach Forums hack met question the validity of the data. The pompous message, the site’s founder even claims that the database is not from a TikTok hack and that the actor in question probably lied all the way. The hackers’ Twitter account was also blocked.