A popular Chinese language input tool for Windows and Android has been discovered to have major security weaknesses that could allow a hostile intruder to understand the text inputted by users.
The findings come from the University of Toronto’s Citizen Lab, which examined the encryption algorithm used in Tencent’s Sogou Input Method, an app with over 455 million monthly active users on Windows, Android, and iOS.
The flaws are in EncryptWall, the service’s own encryption mechanism, and allow network eavesdroppers to extract textual content and get access to sensitive data read more Encryption Flaws in Popular Chinese Language App Put Users’ Typed Data at Risk.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.