"Major Security Flaws Expose Keystrokes of Over 1 Billion Chinese Keyboard App Users"

Cloud-based pinyin keyboard apps' security vulnerabilities could expose users' keystrokes to malicious actors. Citizen Lab found vulnerabilities in eight of nine apps from Baidu, Honor, iFlytek, OPPO, Samsung, Tencent, Vivo, and Xiaomi. Huawei's keyboard app was the only one without security issues. Researchers said the vulnerabilities could expose the contents of users' keystrokes in transit. The discovery builds on previous research conducted by the University of Toronto's interdisciplinary laboratory in which cryptographic flaws in Tencent's Sogou Input Method were uncovered. This class of vulnerabilities affects nearly one billion users. This article continues to discuss the vulnerabilities discovered in cloud-based pinyin keyboard apps.

THN reports "Major Security Flaws Expose Keystrokes of Over 1 Billion Chinese Keyboard App Users"

Submitted by grigby1