ByteDance, the tech firm behind TikTok, has fixed a security vulnerability in the video-sharing social networking service. The vulnerability could have allowed attackers to steal users’ private personal info. TikTok is used for sharing short-form looping mobile videos of 3 to 60 seconds. The company has launched a private bug bounty program and a HackerOne Bug Bounty Program in October 2020 encouraging security researchers to responsibly disclose any security bugs they find in TikTok’s mobile and web apps. The TikTok Android app has more than 1 billion installs according to Google Play Store stats.
Source: https://www.bleepingcomputer.com/news/security/tiktok-fixes-flaws-allowing-theft-of-private-user-information/