Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Privacy

China’s ByteDance Admits Using TikTok Data to Track Journalists

Employees of Chinese tech giant ByteDance improperly accessed data from social media platform TikTok to track journalists in a bid to identify the source of leaks to the media, the company admitted Friday.

Employees of Chinese tech giant ByteDance improperly accessed data from social media platform TikTok to track journalists in a bid to identify the source of leaks to the media, the company admitted Friday.

TikTok has gone to great lengths to convince customers and governments of major markets like the United States that users’ data privacy is protected and that it poses no threat to national security.

But parent company ByteDance told AFP on Friday that several staffers accessed two journalists’ data as part of an internal probe into leaks of company information to the media. 

They had hoped to identify links between staff and a Financial Times reporter and a former BuzzFeed journalist, an email from ByteDance’s general counsel Erich Andersen seen by AFP said.

Both journalists previously reported on the contents of leaked company materials.

None of the employees found to have been involved remained employed by ByteDance, Andersen said, though he did not disclose how many had been fired.

In a statement to AFP, ByteDance said it condemned the “misguided initiative that seriously violated the company’s Code of Conduct”.

Employees had obtained the IP addresses of the journalists in a bid to determine whether they were in the same location as ByteDance colleagues suspected of disclosing confidential information, a company review of the scheme led by its compliance team and an external law firm found, according to Andersen.

Advertisement. Scroll to continue reading.

The plan failed, however, partly because the IP addresses only revealed approximate location data.

TikTok has again come under the spotlight in the United States, with Congress poised to approve a nationwide ban on using the wildly popular short-video app on government devices owing to perceived security risks.

The House of Representatives could this week adopt a law prohibiting the use of TikTok on the professional phones of civil servants, a move that would follow bans in around 20 US states.

TikTok has sought to convince US authorities that US data is protected and stored on servers located in the country. 

But following media reports, it has also admitted that China-based employees had access to US users’ data, although the company insisted it was under strict and highly limited circumstances.

Related: TikTok Harvested MAC Addresses By Exploiting Android Loophole

Related: TikTok Hit by US Lawsuits Over Child Safety, Security Fears

Related: Five Ways TikTok Is Seen as Threat to US National Security

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Understand how to go beyond effectively communicating new security strategies and recommendations.

Register

Join us for an in depth exploration of the critical nature of software and vendor supply chain security issues with a focus on understanding how attacks against identity infrastructure come with major cascading effects.

Register

Expert Insights

Related Content

Compliance

The three primary drivers for cyber regulations are voter privacy, the economy, and national security – with the complication that the first is often...

Artificial Intelligence

Two of humanity’s greatest drivers, greed and curiosity, will push AI development forward. Our only hope is that we can control it.

Cybercrime

Daniel Kelley was just 18 years old when he was arrested and charged on thirty counts – most infamously for the 2015 hack of...

Cybercrime

No one combatting cybercrime knows everything, but everyone in the battle has some intelligence to contribute to the larger knowledge base.

Cybercrime

The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.

Cybersecurity Funding

Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta...

Ransomware

The Hive ransomware website has been seized as part of an operation that involved law enforcement in 10 countries.

Privacy

Many in the United States see TikTok, the highly popular video-sharing app owned by Beijing-based ByteDance, as a threat to national security.The following is...