Privacy @lemmy.ml lemmyreader @lemmy.ml 10mo ago

The not-so-silent type: Vulnerabilities across keyboard apps reveal keystrokes to network eavesdroppers - The Citizen Lab

citizenlab.ca The not-so-silent type: Vulnerabilities across keyboard apps reveal keystrokes to network eavesdroppers - The Citizen Lab

In this report, we examine cloud-based pinyin keyboard apps from nine vendors (Baidu, Honor, Huawei, iFlyTek, OPPO, Samsung, Tencent, Vivo, and Xiaomi) for vulnerabilities in how the apps transmit user keystrokes. Our analysis found that eight of the nine apps identified contained vulnerabilities th...

Technology @beehaw.org tardigrada @beehaw.org 10mo ago

Almost all Chinese keyboards have severe security flaws that can be (mis)used for mass surveillance, report reveals

citizenlab.ca /2024/04/vulnerabilities-across-keyboard-apps-reveal-keystrokes-to-network-eavesdroppers/

115 25

Android @lemmy.world lemmyreader @lemmy.ml 10mo ago

The not-so-silent type: Vulnerabilities across keyboard apps reveal keystrokes to network eavesdroppers - The Citizen Lab

citizenlab.ca /2024/04/vulnerabilities-across-keyboard-apps-reveal-keystrokes-to-network-eavesdroppers/

61 14

You're viewing a single thread.

14 comments

A billion vulnerable users is wild. I'm sure there are government entities taking advantage of this already
- Oh yes, one example is Naomi Wu.
  
  Damn, I didn't know what had happened to her. I really liked her content.
  
  Yeah and didn't she work with Citizen Lab in the past about this? I'm wondering what's new here.
  
  What's new is that apparently "We reported these vulnerabilities to all nine vendors. Most vendors responded, took the issue seriously, and fixed the reported vulnerabilities, although some keyboard apps remain vulnerable."

14 comments