A security researcher is warning TikTok fans that the app appears to be able to monitor what you type.
New research by software engineer Felix Krause has found that the tech giant can do this within the platform’s own web browser on iOS.
TikTok’s own browser launches whenever you tap on a link within the app, Sun reports.
Tracking every keystroke in this way has raised concerns that sensitive things like credit card information or passwords may be captured.
Everything revolves around a piece of code that the company injects.
“When you open any link in the TikTok iOS app, it opens within your browser in the app,” Krause said.
“While you interact with the website, TikTok subscribes to all keyboard input (including passwords, credit card information, etc.) and every touch on the screen, such as the buttons and links you click. ”.
Other apps like Instagram and Facebook have something similar, except they let you open with your regular web browser if you want.
TikTok, on the other hand, doesn’t.
But there is no evidence to suggest that such technology is used for bad purposes.
“There is no way for us to know the full details about what kind of data each browser in the app collects, or how or if the data is transferred or used.”
TikTok has confirmed that the code exists, but strongly denies that it is being used to track users.
A TikTok spokesperson said Sun: “The conclusions of the report on TikTok are incorrect and misleading.
“Contrary to what the report claims, we do not collect text input or keystrokes through this code, which is used solely for debugging, troubleshooting, and performance monitoring.”
This article originally appeared in The Sun and was reproduced with permission.