TikTok hack targeting high profile DMs

A recent TikTok zero-day vulnerability earlier this summer took over celebrity and brand accounts through a flaw in the direct messaging system.

20-08-2024 - 8 minute read. Posted in: hacking.

TikTok hack targeting high profile DMs

A recent TikTok zero-day vulnerability earlier this summer took over celebrity and brand accounts through a flaw in the direct messaging system. Hackers exploited this vulnerability, gaining control without victims needing to take any action. This breach draws attention to security gaps and the urgent steps needed to safeguard accounts. Continue reading to learn how the attack unfolded, TikTok’s countermeasures, and user protection tips.

Key takeaways

  • A zero-day vulnerability in TikTok’s direct messaging system allowed hackers to gain unauthorized access to high-profile accounts without user interaction, gaining access to accounts of notable figures like CNN and Paris Hilton.
  • TikTok responded swiftly by suspending compromised accounts, enhancing security measures, and collaborating with affected users to restore access.
  • The breach exposed personal data of approximately 235 million users, highlighting significant concerns about user data security and the need for robust cybersecurity, especially ahead of critical events like the U.S. presidential election.

Zero-day exploit on TikTok DMs

In the beginning of June this summer, hackers leveraged a zero-day vulnerability within TikTok’s direct messaging (DM) system to take control of numerous high-profile accounts, including those of celebrities and major media outlets. This exploit was particularly insidious as it required no action from the victim beyond opening a direct message, making it a zero-click vulnerability.

The simplicity of the attack was stunning. Hackers sent a malicious message that, once opened, allowed them unauthorized access to the victim’s account. Direct messages proved effective for this exploit since users did not need to take any additional steps, such as clicking on a link or downloading an attachment, making it disturbingly easy for attackers to gain control.

This breach highlighted the vulnerability of high-profile accounts on the TikTok app, where visibility and influence made them prime targets. The hacked accounts included those of celebrities and major brands, demonstrating the broad and significant impact of this security flaw.

The role of direct messaging in the hack

As stated, direct messaging was pivotal in the recent TikTok hack. The malware responsible for the breaches was delivered through direct messages requiring no user interaction beyond opening the message.

This method is reminiscent of prior vulnerabilities seen in other platforms, where content loading methods are triggered automatically, posing an inherent risk in direct messaging systems. Recognizing the role of direct messaging in these hacks underscores the need for enhanced security measures to protect users from similar threats.

TikTok's response to the breach

After the breach was reported on June 4, 2024, TikTok swiftly acknowledged the incident and took immediate steps to mitigate further damage. The company temporarily suspended compromised accounts to prevent misuse, noting that the breach did not result from any compromises on CNN's end but rather from a widespread vulnerability within the platform's direct messaging system, with CNN's account being one of the first targeted.

TikTok implemented a series of security measures to secure its platform and restore access for affected account owners. These measures included working directly with users whose accounts had been hijacked, helping them regain control and resolve any issues stemming from the hack.

TikTok has not publicly confirmed if it reached out to all potentially affected users. However, the company has enhanced security features like multi-factor authentication to better protect user accounts against future threats.

Impact on celebrity and brand accounts

The accounts of notable figures, including Paris Hilton, CNN, and an official Sony brand account, were among those compromised during the attack. These hacked accounts did not appear to be posting content following the attacks, which may have been a strategic move by the hackers to avoid immediate detection.

The targeting of high-profile accounts underscores the effectiveness of direct messaging in this attack. The visibility and influence of these accounts made them prime targets for hackers looking to maximize their reach and impact.

The breach has raised significant concerns about the platform’s security measures for its most prominent users and users in general.

Security team efforts

TikTok’s security team has been working diligently to address the breach and prevent future incidents. A TikTok spokesperson confirmed the company's awareness of the hack and detailed the measures being taken to restore compromised accounts. They employ advanced algorithms to monitor account activity and detect unusual behaviors that may indicate potential compromises. Regular security audits are conducted to identify vulnerabilities in user accounts and the devices linked to them.

TikTok’s security team also collaborates with external cybersecurity experts to bolster defenses and ensure user safety. These efforts are aimed at securing compromised accounts and identifying suspicious devices.

User data at risk

The vulnerability that led to the breach, categorized as CVE-2022-28799, received a high severity rating of 8.3 on the CVSS scale, highlighting its potential impact. This severe data breach exposed personal information of around 235 million users, including names, ages, and contact details.

The potential for data breaches on TikTok raises significant concerns about the security of sensitive user information. As a result, TikTok has taken steps to improve transparency regarding data handling and user privacy.

Immediate response required

In light of the breach, affected users are urged to immediately respond to take immediate action to secure their accounts. Users should change passwords and enable two-factor authentication to prevent unauthorized access.

Users should also monitor their accounts for any unusual activity and report suspicious login attempts. TikTok is reportedly committed to educating users about effective security practices and continues to monitor accounts that may have been impacted by the breach.

By taking these steps, users can help protect their personal information and prevent further compromises.

Reports and platform updates

TikTok has been transparent about the breach, acknowledging the incident and actively working to mitigate the issue. The security team at TikTok is focused on identifying suspicious devices and taking steps to secure compromised accounts. Measures are being implemented to protect user data and enhance overall security on the platform.

Potential impact on future events

The timing of the TikTok hack has raised concerns about its potential impact on future events, including the upcoming U.S. presidential election on June 4, 2024. The spread of misinformation during such a critical time could have serious repercussions, making the security of social media platforms like TikTok even more crucial.

The increasing popularity of video content on platforms like TikTok poses challenges for automated moderation systems, which must effectively manage and mitigate the spread of misinformation.

As we approach significant events, the importance of robust cybersecurity measures cannot be overstated. Ensuring the credibility of information on social media is essential for maintaining public trust and the integrity of the democratic process.

Summary

The recent TikTok breach serves as a stark reminder of the vulnerabilities that exist within even the most popular social media platforms. The zero-day exploit in the direct messaging system allowed hackers to compromise high-profile accounts with alarming ease, highlighting the need for robust security measures.

TikTok’s response, including the implementation of multi-factor authentication and collaboration with affected users, demonstrates the company’s commitment to enhancing platform security. However, users must also take proactive steps to protect their accounts by following best practices for digital hygiene.

As we look to the future, the importance of securing online platforms against potential threats cannot be underestimated. By staying informed and vigilant, you can help safeguard your personal information and ensure the integrity of digital interactions.

Frequently asked questions

What exactly was the TikTok zero-day exploit? The zero-day exploit was a vulnerability in TikTok's direct messaging system that allowed hackers to gain control of high-profile accounts without any action required from the user. By simply opening a malicious direct message, the victim’s account could be hijacked.

Who were some of the notable victims of this hack? Celebrities like Paris Hilton and major brands such as CNN and Sony had their TikTok accounts compromised during this attack. These accounts were specifically targeted due to their high visibility and influence.

How did TikTok respond to the breach? TikTok quickly suspended the compromised accounts, implemented enhanced security measures, and worked closely with affected users to restore access. They also introduced features like multi-factor authentication to better protect accounts.

What can users do to protect their TikTok accounts? Users should immediately change their passwords, enable two-factor authentication, and monitor their accounts for any suspicious activity. Staying informed about security updates from TikTok is also crucial for ongoing protection.

How serious was the data breach associated with this exploit? The breach was highly significant, exposing personal information of around 235 million users. This included sensitive data like names, ages, and contact details, raising serious concerns about the security of user information on TikTok.

Author Emilie Hartmann

Emilie Hartmann

Emilie is responsible for Moxso’s content and communications efforts, including the words you are currently reading. She is passionate about raising awareness of human risk and cybersecurity - and connecting people and tech.

View all posts by Emilie Hartmann

Similar posts