TikTok allows China-based parent company full access to user data

In February 2022, media news site The Wrap published an article citing two cybersecurity studies that described TikTok’s ability to “circumvent security protections on Apple and Google app stores” and grant the app’s Beijing-based parent company, ByteDance, full access to user data. The studies concluded that the social media app can avoid code audits on mobile app stores, covertly alter its in-app behavior, and use device tracking information to relay data access to ByteDance as well as other third parties. In August 2021, the Chinese government gained one of the three of the company’s board seats, and a one percent stake in ByteDance.

About This Incident

Threat Actors: China

Incident Metadata

Date: November 2020 - Ongoing
Country: United States