TikTok confirmed a vulnerability that is being used to target accounts of media organizations and celebrities like CNN and Paris Hilton, through direct messages. The platform is actively working to counter a cyberattack aimed at high-profile users, aiming to safeguard their accounts.
Jason Grosse, a spokesperson for TikTok’s privacy and security team, mentioned that the platform has taken action to halt the attack and prevent its recurrence. TikTok is collaborating with affected account owners to secure their access if required.
Grosse stated that TikTok is currently investigating the attack and refrained discussing its extent or complexity. He labeled the threat as a “potential exploit” at this time.
The acknowledgment from TikTok came after a report surfaced on Tuesday alleging that CNN’s account had been briefly compromised the previous week. According to an undisclosed source at the news outlet Semafor, the breach did not seem to originate from CNN’s side. CNN has not yet responded to WIRED’s inquiry for a statement.
Worries about cyberattacks targeting news organizations in the US have heightened, especially with the upcoming presidential election this autumn.
An article in Forbes earlier today stated that Paris Hilton’s account was also impacted, according to insider information. A source at TikTok informed WIRED that Hilton’s account was under attack but had not been breached.
Concerns about security and privacy on TikTok go beyond cyber assaults from bad actors. The company is currently battling to maintain its presence in the US following a law signed by President Biden in April that requires parent company, Chinese-owned ByteDance, to TikTok or risk a ban. TikTok, along with several users, has filed lawsuits against the US government, arguing that the law violates the First Amendment.
Update at 3:30 pm Eastern Time on June 4, 2024: A TikTok representative informed WIRED that only two accounts have been compromised in the attack, one being CNN’s.
