It has been established for some time that users can access the platform to buy things tick tock, thanks to a browser that connects to various links. And now, some users have detected some suspicious code in the application, which will detect every movement of the user entering data.
investigator, Felix Krause, ensures that the app is able to collect any keyboard movement, via a JavaScript embed code that arrived in an update. This means it will detect user activity when entering passwords, but credit card numbers and codes are more worrisome.
It was confirmed recently Forbes The platform that inserts the code Javascript , but it is only used to improve user experience. So for now users can make sure that it is not used in malicious terms, no key theft has been confirmed so far, but it might happen one day.
This does not mean that the people tick tock Use it to your advantage, but some hackers may discover a way to access data and therefore spy on all users using this internal browser. Therefore, the company should take relevant measures, especially with security protocols to prevent anyone from entering.
Through: frill